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HOW IMPORTANT IS YOUR DATA? 


Years of family photos. Your entire music 
and movie collection. Office documents 
you've put hours of work into. Backups for 
every computer you own. We ask again, how 
important is your data? 


NOW IMAGINE LOSING IT ALL 


Losing one bit - that’s all it takes. One single bit, and 
your file is gone. 





The worst part? You won't know until you | 
absolutely need that file again. Example of one-bit corruption 





THE SOLUTION 


The Mini boasts these state-of-the- 


The FreeNAS Mini has emerged as the clear choice to 
art features: 


Save your digital life. No other NAS in its class offers 


i ry and ZFS bitr 
ECC (error correcting code) memory and ZFS bitrot sieseor Gotti Mora raecseor 


protection to ensure data always reaches disk . Up to 16TB of storage capacity 
without corruption and never degrades over time. - 16GB of ECC memory (with the option to upgrade 
to 32GB) 


, « 2x 1 Gigabit network controllers 
No other NAS combines the inherent data integrity : Ramotemanauementoore (EN) 


and security of the ZFS filesystem with fast on-disk - Tool-less design; hot swappable drive trays 
encryption. No other NAS provides comparable power ISSN re ictal emanecomngured 

and flexibility. The FreeNAS Mini is, hands-down, the 
best home and small office storage appliance you can 
buy on the market. When it comes to saving your 
important data, there simply is no other solution. 
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CERTIFIED 
STORAGE 


With over six million downloads, 
FreeNAS is undisputedly the most 
popular storage operating system 
in the world. 


Sure, you could build your own FreeNAS system: 
research every hardware option, order all the 

parts, wait for everything to ship and arrive, vent at 
customer service because it hasn't, and finally build it 
yourself while hoping everything fits - only to install 
the software and discover that the system you spent 
days agonizing over isn’t even compatible. Or... 


MAKE IT EASY ON YOURSELF 


As the sponsors and lead developers of the FreeNAS 
project, ixsystems has combined over 20 years of 
hardware experience with our FreeNAS expertise to 
bring you FreeNAS Certified Storage. We make it 
easy to enjoy all the benefits of FreeNAS without 
the headache of building, setting up, configuring, 
and supporting it yourself. As one of the leaders in 
the storage industry, you know that you're getting the 
best combination of hardware designed for optimal 
performance with FreeNAS. 


Every FreeNAS server we ship is... 


» Custom built and optimized for your use case 

» Installed, configured, tested, and guaranteed to work out 
of the box 

» Supported by the Silicon Valley team that designed and 
built it 

» Backed by a 3 years parts and labor limited warranty 


a cue 





As one of the leaders in the storage industry, you 
know that you're getting the best combination 

of hardware designed for optimal performance 

with FreeNAS. Contact us today for a FREE Risk 
Elimination Consultation with one of our FreeNAS 
experts. Remember, every purchase directly supports 
the FreeNAS project so we can continue adding 
features and improvements to the software for years 
to come. And really - why would you buy a FreeNAS 
server from anyone else? 





FreeNAS 1U 

- Intel® Xeon® Processor E3-1200v2 Family 

« Up to 16TB of storage capacity 

* 16GB ECC memory (upgradable to 32GB) 

« 2x 10/100/1000 Gigabit Ethernet controllers 
« Redundant power supply 


FreeNAS 2U 
- 2x Intel® Xeon® Processors E5-2600v2 Family 
« Up to 48TB of storage capacity 
¢ 32GB ECC memory (upgradable to 128GB) 
« 4x 1GbE Network interface (Onboard) - 
(Upgradable to 2 x 10 Gigabit Interface) 
« Redundant Power Supply 











http://www.iXsystems.com/storage/freenas-certified-storage/ 
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EDITOR’S WORD 


Dear Readers, 
hope you all are anxiously anticipating the May issue of BSD magazine. 
This time, we prepared very good articles that will cover many new topics. 
Just sit and read the new issue. This time | would like to make a very 
short presentation of what is included in the May issue. Today, you will learn: 


¢ How to manage large software development projects using RCS 
tools. 

¢ How to use and administer RCS tools for BSD-Unix systems. 

¢ What is DragonFly and how to use its most prominent file system 
Hammer. 

¢ What is Meteor. 

¢ What are some key features of MeteorJS. 

¢ How to build a realtime chat with a few lines of code. 

¢ How to understand bhyve, the BSD hypervisor. 


We would also like to thank you Authors, Reviewers, Proofreaders, BSD 
fans, Friends, and Readers for your invaluable support and contribution. 


Enjoy your reading! 
Ewa & BSD Team 
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RCS Tools 


OGHow to Manage Large Software 
Development Projects Using RCS Tools 
Jose B. Alos 
Software Configuration Management has been a 
traditional concern since the beginnings of the IT era. BSD 
development teams have traditionally used CVS as the 
main version control system for all their projects, including 
kernel development. However, CVS has some major 
drawbacks that can be superseded using more modern 
tools that outclass CVS in order to achieve the same 
goal. Jose will show you how to manage large software 
development projects using RCS tools and how to use 
and administer these RCS tools for BSD-Unix systems. 


HAMMER 


18 Working with Hammer File System and 

PFSes 

Siju George 
DragonFly belongs to the same class of operating systems 
as other BSD-derived systems and Linux. It is based on 
the same UNIX ideals and APIs and shares ancestor code 
with other BSD operating systems. DragonFly provides an 
opportunity for the BSD base to grow in an entirely different 
direction from the one taken in the FreeBSD, NetBSD, 
and OpenBSD series. DragonFly includes many useful 
features that differentiate it from other operating systems 
in the same class. The most prominent one is HAMMER, 
our modern high performance file system with built-in 
mirroring and historic access functionality. Siju will tell you 
why the HAMMER file system is a neat implementation of 
a copy-on file system with extra features and why it uses 
much less RAM than ZFS. Siju will try to convince you that 
it is a good choice for any kind of operation. 


FreeBSD Solutions 


= <4 Running Javascript Client and Server 
Side with MeteorJS on FreeBSD 11 
Luigi Maselli 
Javascript is everywhere, in web browsers, servers 
(NodeJS), smartphones (Phonegap/Cordova). MeteorJS 
takes advantage of this situation to revolutionize web 
frameworks. In this article, Luigi will introduce MeteorJS 
and demonstrate an example app deployed on FreeBSD 
11. He will describe to you the features of MeteorJS and 
present to you how to build a realtime chat with a few lines 
of code. 
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=S Understanding bhyve, the BSD 

Hypervisor 

Imad Soltani 
The virtualization process has been an important part of 
an information system. FreeBSD has “jails”, and in a lot of 
cases, it is ideal, secure and flexible. But, sometimes we 
need to use other operating systems. We need bhyve, the 
“BSD hypervisor’, which is a legacy-free hypervisor/virtual 
machine manager developed on FreeBSD. A hypervisor 
allows the operation of one or more guest operating 
systems within a host operating system. In this article, you 
will learn what bhyve is. In the second part of this article, 
“Playing with bhyve, the BSD hypervisor’, we will create 
guests from different OSes in a FreeBSD host with bhyve. 


GIMP 
34 Getting to grips with the Gimp — Part 4 


Rob Somerville 

One of the most powerful tools supplied by the Gimp is the 
paths tool. Using Bezier curves, selections can be made 
accurately around curved objects, and minor adjustments 
and transformations can be performed on the selection. 
This selection can be saved as a path and applied across 
layers, making this function a great time-saver when 
working with complex images. While Bezier curves can 
be difficult to master, with practice they will become an 
essential part of your toolkit. Rob will teach you how to 
manipulate images like a design pro. 


Meet Our Experts 


50 Interview with Luca Ferrari 
BSD Team 


Column 


51 Ina surprise decision, Europe’s top 
court has ruled that Google can be 
forced to erase links to content about 
individuals. Is history repeating itself 
once again? 

Rob Somerville 


Crossword 
56 The FreeBSD Cryptic Crossword 


Rob Somerville 
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row to Manage Large 





Software Development 


Projects Using RCS Tools 





Software Configuration Management has been a 

traditional concern since the beginnings of the IT era. BSD 
development teams have traditionally used CVS as the main 
version control system for all their projects, including kernel 
development. However, CVS has some major drawbacks 
that can be superseded using more modern tools that 
outclass CVS in order to achieve the same goal. 


What you will learn... 

« How to manage large software development projects using RCS 
tools 

« Make the right choice depending on the nature of your 
programming project 

« Understand the weaknesses and strengths of the different RCS 
paradigms in use 

« How to use and administer these RCS tools for BSD-Unix systems 


ne of the more popular VCS tools was a system 
C) called RCS, which is still distributed with many 

computers today. Even the popular Mac OS X 
operating system includes the rcs command when you 
install the Developer Tools. This tool basically works by 
keeping patch sets (that is, the differences between files) 
from one revision to another in a special format on disk; it 
can then recreate what any file looked like at any point in 
time by adding up all the patches. 

Notice that there are other Open Source systems for 
RCS not using a change set approach but snapshots like 
Git, originally developed in C and Perl, which use SHA- 
1 digests instead of numbers to control the different ver- 
sions stored in the distributed repositories. 
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What you should know... 


« Intermediate UNIX OS background as end-user and administrator 
« Some experience with CVS environment for version control 

¢ Experience with Ports system package 

- Software development experience 


Repository Models. Centralized vs. Distributed 
The next major issue that people encounter is that they 
need to collaborate with developers on other systems. 
To deal with this problem, Centralized Version Control Sys- 
tems (CVCSs) were developed. These systems, such as 
CVS and Subversion, have a single server that contains all 
the versioned files, and a number of clients that check out 
files from that central place. For many years, this has been 
the standard for version control (see Figure 1-2). 

This setup offers many advantages, especially over lo- 
cal VCSs. For example, everyone knows to a certain de- 
gree what everyone else on the project is doing. Admin- 
istrators have fine-grained control over who can do what; 
and it’s far easier to administer a CVCS than it is to deal 
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Figure 1. Overview of current repository models and tools used in VCS 


with local databases on every client. However, this setup 
also has some serious downsides. The most obvious is 
the single point of failure that the centralized server rep- 
resents. If that server goes down for an hour, then dur- 
ing that hour nobody can collaborate at all or save ver- 
sioned changes to anything they're working on. If the hard 
disk the central database is on becomes corrupted, and 
proper backups haven't been kept, you lose absolutely 
everything—the entire history of the project except what- 
ever single snapshots people happen to have on their lo- 
cal machines. Local VCS systems suffer from this same 
problem — whenever you have the entire history of the 
project in a single place, you risk losing everything. This is 
where Distributed Version Control Systems (DVCSs) step 


Central VCS Server 


Version Database 


Computer B 


Checkout 





Figure 2. Centralised repository model 
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Standalone Distributed 
RCS RCS 


in. In a DVCS (such as Git, Mercurial, Bazaar or Darcs), 
clients don’t just check out the latest snapshot of the files: 
they fully mirror the repository. Thus if any server dies, 
and these systems were collaborating via it, any of the 
client repositories can be copied back up to the server to 
restore it. Every checkout is really a full backup of all the 
data (see Figure 1-3). 


Server Computer 


Version Database 


Computer B 


Computer A 


Version Database Version Database 





Figure 3. Distributed repository model 
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For this reason, one of the most important drawbacks 
for distributed repositories is the poor performance for 
initial repository loads. This is the price to be paid for 
higher availability and failure protection using this redun- 
dant approach. 


SVN and git Internals 

Snapshots versus differences 

Traditionally, RCS systems have stored the different ver- 
sions of a file by using differences with respect to its im- 





Progressive differences Recessive differences 


Figure 4. RCS Differences Storage Systems (single file) 


Checkins over time ———_—_—__ 


Ceson) esa) Cena) Cesar) Caer) 


Figure 5. Differences storage for RCS (CVS and SVN) 





Checkins over ine ———————————————————— 





Figure 6. Snapshots storage for RCS (Git and Mercurial) 
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mediate predecessor or successor in time. Historically the 
first RCS systems stored all consecutive differences be- 
tween a given version and its previous one: Figure 4. 

Obviously, the files belonging to a project most widely 
used are the latest ones released in time. This is the rea- 
son why the more evolved RCS systems, such as CVS 
and SVN among others, prefer the approach based upon 
storing recessive differences. Hence the way to get a pre- 
vious version consists of applying on the latter file the pre- 
vious differences stored until the desired version of such 
a file is reached (Figure 5). Furthermore, beyond SVN cli- 
ent-server approach, the systems like Git and Mercurial 
also allow the use of snapshots, which is a promising fea- 
ture for developers shown in Figure 6. 

Snapshots allow developers to get an accurate picture 
on a specific moment in time, which can be used later on 
to derive alternatives (variants) from the main develop- 
ment branch, and to get a frozen view of the current sta- 
tus of a project, suitable for review processes and audits. 


Branching and Merging 
Developers often need to maintain a release version of a 
product while working on new features. The base/release 
version of a project in Git/SVN is the trunk. New versions of 
the trunk are developed in branches off of the trunk or off 
of another branch. In Subversion, you work on branches 
in a new working copy of your code. Git maintains a single 
working copy and enables you to switch branches at will. 
When changes are complete, and a branched version is 
ready to become the release version, it is merged with an- 
other branch (or the trunk) to create a unified code base. 
Conflicts are dealt with, and then the finished code is com- 
mitted to the repository and pushed (with Git) to the re- 
mote server, if desired. 


Distributed SCM Applications. Git 

Before starting with this section, we assume the reader 
has a certain knowledge about the CVS client-server sys- 
tem, as the main aim of these paragraphs is to explain 
by comparing the different approaches and strategies fol- 
lowed by both SCM systems. Since the 80s CVS is the 
“de facto” revision control system used for most develop- 
ment projects, for instance BSD OS flavors. 

Git is a VCS which allows complex workflows suitable 
for almost every development team depending on the 
complexity level required by a project: 

In this sense, Git supports three workflows for VCS: 


¢ Centralised workflow; this is the approach followed by 


RCS, CVS and SVN consisting of the traditional cli- 
ent-server paradigm. 
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¢ Flow workflow, useful when dealing with several 
teams devoted to a single project in which branches 
have been defined; for instance, for patching or alter- 
nate releases purposes. 


The Gitflow Workflow streamlines the release cycle by us- 
ing isolated branches for feature development, release 
preparation, and maintenance. Its strict branching model 
also lends some much needed structure to larger projects. 


¢ Distributed workflow, also termed forking workflow, 
is the most powerful way to ensure reliability against 
single-failure repositories. This workflow takes full ad- 
vantage of branching and cloning features provided 
by Git. 


Summing up, the distributed workflow is the preferred 
approach when dealing with Git in order to provide a 
safe and reliable environment to manage large teams. 
It can also accept commits from untrusted individuals. 


Git explained 
Suppose you are involved in a large software project in 
which workload is not equally distributed around a devel- 
opers community. In these cases, some features from SVN 
and CVS systems such as the use of numbers to label re- 
visions or a centralized repository are not a good idea in 
terms of performance and availability and the right decision 
to make is to adopt a distributed workflow for VCS. 

That is why, Git plays an important role for projects in 
which the workload is non-linear. The main characteristics 
for Git are: 


OTST 





Figure 7. Distributed (forking) workflow 
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¢ Command syntax, easy to get familiar with all com- 
mand-line git commands provided by Git. Besides, 
most of the commands exist also for the SVN platform: 


S$ git [ command ] 


¢ Repositories. While SVN has a single repository for 
each project, Git has its own repository for each copy 
of a project. 

¢ Uniform Resource Locators (URL). Every SVN re- 
pository counts with three directories named branch- 
es, tags and trunk and the versions are identified with 
numbers. For a distributed environment such as Git, 
this approach becomes unpractical and hence, Git 
uses 160-bit SHA1 digests to label project revisions. 

¢ Commits. Every commit has an author and a field to 
record who/when created the change and who/when 
committed it to the repository. 


An additional feature that makes Git especially wonderful 
for Open Source software developers is the ability of work- 
ing with patches coming via email by using git format-patch 
and git send-email. Besides, Git also incorporates incorpo- 
rates colourful output to provide better visualisation. 


Git syntax and mostly used operations 

The git(1) syntax is based on the getopt(1) UNIX para- 
digm, supporting a set of options for a given command 
and their required arguments: 


git [--version] [--help] [-c name=value] 
[=-exec-—path(=<path>|]|] [-=html=pach| [-—=-man-= 
path] 
[=—-1nro-peth) 
[-p|--paginate|--no-pager] [--no-replace- 
objects] [--bare] 


[--git-dir=<path>] [--work-tree=<path>] 
[--namespace=<name>] 


<command> [<args>] 
The most commonly used git commands are: 


¢ Add: Add file contents to the index 

¢ bisect: Find by binary search the change that intro- 
duced a bug 

¢ branch: List, create, or delete branches 

¢ checkout: Checkout a branch or paths to the working tree 

¢ clone: Clone a repository into a new directory 

* commit: Record changes to the repository 

¢ diff: Show changes between commits, commit and 
working tree, etc 
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Listing 1. Creating a new Git repository (page 10/60) 


S git config --global user.name “Jose B. Alos” 

S git config --global user.email jose.alos@yahoo.es 

So LCaseesemente 

ceca acone 

5 Gir comma t 

Added new files to Git 

# Please enter the commit message for your changes. Lines starting # with ‘#’ will be ignored, and an empty message 
aborts the comm. 


7 VOMmlot annie meact eu 


new file: Jove jel a sya 


new file: primes.cc 


if 

# Initial commit 

# 

# Changes to be committed: 

# (iSe= Gil “mr =-cached <ile> 2). * tO Unstage) 
it 

# new file: bubble sort.c 
# new file: heapsort.c 

# 

it 

# 


Listing 2. Checking current status for Git repository (page 10/60) 


Scl5lool:~/ scripts umix/ Scripts) umix> cit status 


+ One oraneh Mas tor 


# 

# Initial commit 

it 

# Changes to be committed: 

# (use “git rm --cached <file>...” to unstage) 
# 

# new file: bubble sortec 
it new file: heapsort.c 

# new file: pep ca 

# new file: primes.cc 

# 


Listing 3. Cloning a Git repository (page 10/60) 

Pacemcllones, Nome, ¢ 2060s) cemieins, UMine Scmieine, Uma cloncecmeney 

Cloning neo. My se Ponedyerogm.. 

EnevauEneneverty Or hose Secloloor tld. 128 40537)" sean tt be established: 
ECDSA key. MGS roriiiee Ss woe Oc sry ta lGd: lee sede acd Cot it) S20 Jer Din. 
Are you sure you want to continue connecting (yes/no)? yes 

Warning: Permanently added “ecl51991., 10 712382540 37 (ECDSA) ro the List of knowm hosts. 
eZ0395@eclol9ol. s password: 

Cannot open display “default display” 

remote: Counting objects: 6, done. 

remote: Compressing Objects: 800. (6/6), done. 


remote: Total 6 (delta 0), reused 0 (delta 0) Receiving objects: 100% (6/6), done. 
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¢ fetch: Download objects and refs from another reposi- 
tory 

¢ grep: Print lines matching a pattern 

e init: Create an empty Git repository or reinitialize an 
existing one 

¢ log: Show commit logs 

¢ merge: Join two or more development histories to- 
gether 

¢ mv: Move or rename a file, a directory, or a symbolic 
link 

¢ pull: Fetch from and integrate with another repository 
or a local branch 

¢ push: Update remote refs along with associated ob- 
jects 

¢ rebase: Forward-port local commits to the updated 
upstream head 

¢ reset: Reset current HEAD to the specified state 

¢ rm: Remove files from the working tree and from the 
index 

¢ show: Show various types of objects 

¢ status: Show the working tree status 

¢ tag: Create, list, delete or verify a tag object signed 
with GPG 


In order to clarify the use for Git newcomers, the follow- 
ing sections will describe the most common operations 
to start with and manage project files under Git control. 


Getting started with Git 

Let us suppose we have installed all required Git compo- 
nents for our platform (BSD, Linux, SunOS, HP-UX, et al.) 
and that we have a set of files and directories correspond- 
ing to a new project. 


¢ Creating a new Git repository from scratch. Once we 
are placed within the directory containing the project 
files, issue the following commands: Listing 1. After 
these files have been committed, we can check their 
statuses by running the command: Listing 2. 

¢ Getting a copy of the project files for read-only pur- 
poses. If we want to examine some files belonging to 
our project under Git control, the following commands 
apply: Listing 3. 


The changes performed can be committed to the original 
repository by using the pull subcommand: 


S$ git pull 


Furthermore it is possible to add remote branches to a 
cloned repository by using the command: 
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S git remote add remote url 


S git remote show remote 


Eventually, the process of fetching and merging remote 
branches can be automated by using the git pull com- 
mand, which is equivalent to the svn update Command in 
SVN systems. 


Strategies of GIT usage 

Usage for Cooperative development 

A widely used tactic in OpenSource projects that might 
be followed here is based upon the use of a CVS/SVN 
repository to provide updated working copies for devel- 
opers. These copies can be modified later on and these 
modifications will be sent to the Git repository administra- 
tors in order to make the decision on including these in 
further versions. 

To achieve this goal, the process to be executed can be 
summarized in the following steps, that can be extrapolat- 
ed for Git usage in the same manner that we did for SVN. 

In order to clarify its usage, consider two users named 
userA and users, where userA Is the Git’s repository owner. 


¢ Get a working copy of the repository. In the case of 
using Git, it is required to indicate the authentication 
process defined on this repository. 
¢ Local access to Git repository. Users share the 
same platform 


S$ git clone /home/userA/my project my cloned project 


Now the contents are available at my_cloned_project/ 
directory. 


> co my cloned project 


After some changes have been done, commit them into 
the Git directory: 


S$ git commit -a 


And notify the other users of the changes so that the reposi- 
tory owner can update it by issuing the following commands: 


$ cd /home/userA/my project 
$ git pull /home/userB/my cloned project master 


The last command merges the changes from userB’s 
master branch into userA’s current branch repository. 
Keep in mind that any changes performed meanwhile by 
userA Shall be fixed by hand. 
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¢ Remote access to Git repository. Users do not share 
the same platform. 


lf we suppose the main Git repository is available at 
Persephone host, users working in other hosts can ac- 
cess the Git repository by using the SSH protocol, which 
is a built-in feature. Hence the unique change regarding 
Git local access is for the git clone subcommanad: 


S$ git clone persephone:/home/userA/my project my_ 
cloned proj ect 
Cloning into: ‘my cloned project’ «.. 
c20395@persephone.’s password: 
Cannot open display “default display” 


remote: Counting objects: 6, done. 
remote: Compressing objects: 100% (6/6), done. 
remote: Total 6 (delta 0), reused 0 (delta 0) Receiving 


objects: 100% (6/6), done. 


Notice that the URL corresponding to a Git repository is 
stored under .git/ directory and can be examined by issu- 
ing the command below. A single Git repository also sup- 
ports variants for remote access based on SSH; it is also 
possible to use RSYNC or HTTP protocols for this purpose. 


Usage for branching and merging development 
A single Git repository supports also supports variant de- 
velopment by using branches, in order to meet the three 
basic requirements for complex-project management: 
¢ Multiple project allocation 
¢ Mainline versioning control supported 
¢ Branching and variant development supported 
Every Git repository counts with a default branch named 
“master”. Let’s suppose a working copy of a Git reposito- 
ry has been placed under our control. The process of us- 
ing branches can be summarized in the following steps: 
¢ Examine the existing branches for the project 
© git branch 

¢ Create a new branch labeled “experimental” 


S$ git branch experimental 


¢ Make the changes or additions/deletions desired 
¢ Commit the changes to the new “experimental” branch 


S$ git commit -a 
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The merging process in which a non-default branch 
must be incorporated into the “master” branch, can be 
easily performed by the command: 


S git merge experimental 


Whenever the changes between both branches do not 
conflict with each other. 


Basic Work Cycle 
Git has numerous features, options, bells, and whistles, 
but on a day-to-day basis, odds are that you will use only 
a few of them. In this section, we'll enumerate the most 
common things that you might find yourself doing with Git 
in the course of your daily work. 

The typical work cycle looks like this: 


e Update your working copy 
¢ git clone: Bring changes from the repository into 
the working copy. 
e Make changes 
¢ git add: Put files and directories under version 
control, scheduling them for addition to the reposi- 
tory. They will be added in the next commit. 
¢ git rm: Remove files and directories from version 
control and from the local working directory tree. 
¢ git fetch: Duplicate something in working copy or 
repository, remembering history. 
¢ git mv: Move and/or rename something in working 
copy or repository. 
¢ Examine your changes 
¢ git status: Print the status of working copy files 
and directories. 
¢ git diff: Display the differences between two revi- 
sions or paths. 
¢ Fetch from and merge with another repository or local 
branch 
¢ git pull: Adds changes to another Git repository 
¢ Resolve conflicts (merge others’ changes). 
¢ git status: Resolve conflicts on working copy files 
or directories. 
¢ Commit your changes. 
¢ git commit: Send changes from your working copy 
to the repository. 
¢ Set up a new label (optional) 
¢ git tag: Creates a label to reference a baseline 
(snapshot files) 


BASIC OPERATIONS 
This section will introduce the use of Git in a normal day’s 
work (how to get a working copy of the repository, deal 
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with modifications and put all new stuff back into the re- 
pository). In order to provide a better understanding, let us 
assume we use a MS Windows client platform to operate 
with SVN server. 


Git GUI Clients 

The usage of the command-line gui tool is sometimes 
tricky for new users. That is the reason why a wide variety 
of tools to provide a better user interface for Git have been 
developed during the last few years. 


Multiplatform GUI clients 

There are two standard tools bundled with the Git envi- 
ronment, and developed by using the Tcl/Tk language. 
The first one is GITK, which is an application built using 
Tcl/Tk suitable for repository browsing purposes. 

Figure 8 reflects the status of the Git project initially cre- 
ated while Figure 9 shows the repository status after he 
“experimental” branch has been created. 

The second one is GIT-GUI, which goes beyond GITK 
and provides options to handle commits and branches 
management. 

Figure 10 shows the changes made onto a file during 
the development phase in an intuitive way. For Unix-lov- 
ers, the tandem GITK/Git-View is good enough for a first 
approach to Git usage. 


MS Windows GUI clients 
Unfortunately, we cannot avoid the extensive use of MS 
Windows platforms for serious development. For these 
users, two tools are available, which require the previ- 
ous installation of Git 1.9.0 for MS Windows, available at 
http://code.google.com. 

TortoiseGit, developed by Li Frank and inspired by well- 
known TortoiseCVS and TortoiseSVN, implements most 
regular features provided by Git such as commits, branch- 
es management, repository analysis and examination. The 
main drawback is that it is still under active development 
and the current stable version is 1.8.8.0 (Figure 11). 

Git Extensions is the alternative and contains a stand- 
alone GUI together with a Visual Studio 2005/2008 
plugin and is written in C# and C++. It is also not a 
mature alternative. 

The most relevant features for these Git clients are: 


¢ Shell integration: TortoiseGit integrates seamlessly 
into the Windows shell (i.e. the explorer). This means 
you can keep working with the tools you're already fa- 
miliar with. You do not need to change into a different 
application each time you need functions of the ver- 
sion control. 
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¢ Icon overlays: The status of every versioned file and fold- 
er is indicated by small overlay icons. That way you can 
see right away what the status of your working copy is. 

¢ Easy access to Git commands: All Subversion com- 
mands are available from the explorer context menu. 
TortoiseGIT adds its own submenu there. 
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Figure 8. G/TK X11 client repository view (initial) 
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Figure 9. G/TK Repository view (with branch “experimental”) 
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Figure 10. G/7-VIEW X71 Client 
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¢ Graphical implementation of some Git commands: 
Such as diff or conflicts resolution. 


TortoiseGIT also requires installation of Windows Install- 
er 4.5 or later before attempting to install it for MS Win- 
dows XP SP3 systems or later. 


MacOS X GUI clients 
For Apple lovers, the native Xcode development environ- 
ment includes high-quality, built-in Git support. 

Other interesting possibilities when using some free IDE 
such as Eclipse, is the use of Git plugins in a similar way 
as done with other VCS tools. 


Browsing GIT Repositories 

There are two main ways to browse the contents of a giv- 
en Git repository. The first possibility, widely used by MS 
Windows-lovers is the use of the Git Tortoise client (Repo- 
Browser option), which requires previous authentication 
to access: Figure 12. 


Open File - Security Warning 


Do you want to run this file? 


Tortoisecit-1.8.8,0-32bit.msi 


Open Source Developer, Syen Strickroth 
Windows Inskaller Package 


Name: 
Publisher: 


Type: 
From: :\Documents and Settings|c20395,.ECLS2004)My .., 


Aun Cancel 


Always ask before opening this file 


Y 


Figure 11. Git Tortoise client installation (page 14/60) 


While files fron the Internet can be useful, this file tyoe can 
potentially harm your computer, Only run sottware fran publishers 
wou trust, What's the risk? 


Git Gui 
Repository Help 


Create Hew Repository 
Clone Existing Repository 
Open Existing Repository 


Figure 12. Git repository browsing 
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The common structure for controlling changes and their 
time evolution is given in Figure 13. 

The second one is to use Tortoise Git support as shown 
in Figure 9. This is platform-independent and does not 
require an external tool, just a compliant HTTP browser 
such as MSIE or Mozilla among others. 


Getting a working copy from Git repository 

To start with Git clients, the first step is to get a copy of an 

empty repository to be populated with the desired direc- 

tories structure for our development project (Figure 14). 
In UNIX-like systems, the equivalent commands are: 


S$ cd $HOME 
S git clone 10.128.40.37:/home/userA/ ( 


lf you only want to get a copy for read-only purposes, 
just use the subcommand git fetch. 


Conclusions 

There are some common points shared by CVS, SVN and 
Git. In fact, both SVN and Git support atomic operations 
and common versioning, but there are two main differenc- 
es between the two last ones. 


Git Gui 


| Renoatory Help 


Open Existing Repository 





Repository: 10.128.40.37;fhome/c20395/scriptsyunix/scripts/unis 


Browse 








Figure 13. Git Browse repository example 
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Figure 14. Getting a copy of a remote Git repository 
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¢ Distributed repositories available in a transparent way. 

¢ Use of SSH-based protocols to access remote Git re- 
positories. 

¢ Use of MD5 checksums for version labeling. 


In this sense, Git and SVN behave identically as a ver- 
sion refers always to a set of files present during a com- 
mit operation. What makes possible the use of Git for 
high-complexity projects and the syntax and the com- 
mon procedures for end-users are very similar, so the 
learning curve is not so steep. 

Regardless of whether you are dealing with small proj- 
ects or large ones, you should consider the use of Git 
as a powerful replacement for CVS and SVN solutions. 
lf you are looking for a CVS system with excellent reliabili- 
ty against single failures that can damage repositories, Git 
suits your needs as a software developer perfectly. 


This section lists the specifications, standards, manuals, and oth- 
er documents, including policy directives, referenced or used as 
source material for this plan. 


IEEE Trans. on Soft. Eng. 1975 SE 1-4 - The Source Code Control 
System (SCCC) 
http://scm.tigris.org — |ntroduccidn a los sistemas SCM. 


Specific Documents 


http://git-scm.com/book/ - Pro Git Book. Scott Chacon 
http://git-scm.com/downloads/guis — Git GUI Clients for MS Win- 
dows, Unix and MacOS X 
http://code.google.com/p/msysgit/downloads/detail?name=Git- 
1.9.0-preview20140217.exe&can=1&g=%22Full+installer+for+official 
+Git+for+Windows%22 — Git 1.9.0 tools and GUI for MS Windows 
https://github.com/gitextensions/gitextensions/ — Git Extensions 
for MS Windows 


- http://code.google.com/p/tortoisegit/ — TortoiseGit GUI Client for 
MS Windows 


Acronyms and abbreviations 


¢« COTS -Commercial Off-The-Shelf. 

« CSCI - Computer Software Configured Item 

¢« CVS - Control Version System 

¢« DAL- Development Assurance Level 

- DAV - Distributed Authoring and Versioning 
¢ HTTP -Hypertext Transfer Protocol 

- IDE -Integrated Development Environment 
¢« RCS - Revision Control System 

¢ SSL - Secure Sockets Layer 

- SVN - Subversion 

« VCS - Version Control System 
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Working with Hammer 
File System and PFSes 








DragonFly belongs to the same class of operating systems as 
other BSD-derived systems and Linux. It is based on the same 
UNIX ideals and APIs and shares ancestor code with other BSD 
operating systems. DragonFly provides an opportunity for the 
BSD base to grow in an entirely different direction from the one 
taken in the FreeBSD, NetBSD, and OpenBSD series. 


What you will learn... 

« Use dports to install software on DragonFly 
« Create Pseudo File Systems in Hammer 

¢ Configure Pseudo File System Snapshots 

¢ Configure other tuning parameters of PFS 

¢ Configure PFS mirroring to a second PFS 


ferentiate it from other operating systems in the 
same class. The most prominent one is HAM- 
MER, our modern high performance file system with built- 
in mirroring and historic access functionality. If you have 
no dragonfly system installed, please visit http:/Awww. 
dragonflybsd.org/download/ and get the latest release 
and install it on your computer. Most computers now are 
64-bit so choose the architecture carefully. Your install 
system can be a virtual machine on your computer too. 
The installation is quite straightforward. Remember to 
choose the default Hammer file system during the install. 
Once the installation is complete if you want to SSH in- 
to it aS root, you will have to copy your SSH public key 
and enter it in the /root/.ssh/authorized keys file of your 
newly installed system. If you want to copy the key file 
using SSH, you should make the following changes to / 
etc/ssh/sshd config and revert once your keys are cop- 
ied. You may also copy the key using a USB stick without 
making these changes. 


|) ragonFly includes many useful features that dif- 


PermitRootLogin yes 


PasswordAuthentication yes 
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What you should know... 
¢ Basic unix shell commands 
« Setup SSH key based authentication 


lf your system hangs while installing or during boot post- 
install, then you could try disabling ACPI. 

During boot, press 4 in the boot menu to boot ACPI dis- 
abled. If it succeeds, make the change permanent by put- 
ting these lines in /boot/loader.conf 


#disable acpi 
lunset acpi load 


set hint.acpi.0.disabled=1 


If you now visit /pfs you will see the following Pseudo File 
Systems created by the installer. A Pseudo File System 
is a Hammer File system inside a Mother hammer which 
has almost all the functionalities of the mother file system. 


# cd /pfs && ls 


home tmp usr usr.obj var var.crash var.tmp 
If you visit /etc/fstab, you will find where these PFSes 
are mounted (Listing 1). Now a df -h should show you 
the mount points and PFS mounts (see Listing 2). 

You can get the details of all PFSes in the system using 


the command: 
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# hammer info 


Before we go in detail to PFSes we will now see how to 
install third party software in dragonfly. The recent re- 
leases use dports unlike the older releases which used 
pkgsrc from the NetBSD project. In order to install dports 
on your system, use the following commands: 


cd /usr 
make dports-update 
rm /usr/local/etc/pkg.conf 


S$+- S$ = SF 


cd /usr/local/etc/pkg/repos && mv df-latest.conf.sample 
df-latest.conf 


In order to install third party software, use the follow- 
ing commands: 


# pkg update 


Working with Hammer Pseudo File Systems 

Let us now create a PFS. By convention PFSes are cre- 
ated under the directory pfs under the mother file system 
(see Listing 3). Each PFS has a unique-uuid and shared- 
uuid. In order to mirror data from a master PFS, a slave 
PFS should have the same ‘shared-uuid’ as the master. 

Now let us look at the different configuration options for 
a PFS. You can edit the defaults using hammer viconfig 
<pfs> (see Listing 4). 

For a new PFS, we find that there is no default configu- 
ration but find that there are 6 configuration options com- 
mented for the PFS. You will need to uncomment the op- 
tion in order for it to work. These configuration options will 
be used by hammer cleanup when it is run by periodic daily, 
periodic weekly and periodic monthly. You can configure 
the time they run in /etc/crontab. 


# cat /etc/crontab |grep periodic 

















# pkg install “software” 1 2 x * x root periodic daily 
Listing 1. File System Table 
# cat /etc/fstab 
# Device Mountpoint FStype Options Dump Pass# 
/dev/serno/9QMAS4SZ.sla (SOCK has rw i i 
/dev/serno/9QMAS4SZ.s1b none swap SW 0 0 
/dev/serno/9QMAS4SZ.sl1d / hammer rw 1 iL 
(OES) var /var nude rw 0 0 
/ ors] Emp /tmp te lee rw 0 0 
(ome, Wea (usr null rw 0 0 
/pfs/home /home mele rw 0 0 
/ ons) Usk soo) FUSt/ Ob] aaa rw 0 0 
(OlS) ver sebash /var/crash null rw 0 0 
eis) (lemme /var/tmp melee rw 0 0 
moe LOLec Oc rw 0 0 
Listing 2. File System Mount Points 
cl teen 
Filesystem Size Used Avail Capacity Mounted on 
ROOT A55G 12G 443G 36 h 
devfs i OikG male OK OB 0G. /dev 
/dev/serno/9QMAS4SZ.sla 756M 430M 265M 62% (KOO 
/pfs/@@-1:00001 455G 12G 4436 3% /var 
/pfs/@@-1:00002 455G 12G 4436 3% /tmp 
/os7 CES VOOUS 455G 12G 4436 3% /usr 
/pfs/@@-1:00004 455G 12G 4436 ce /home 
(oes Ce VOO0S 455G 12G 4436 3% (ise Ob) 
/pfs/@@-1:00006 455G 12G 443G 3% /var/crash 
/pfs/@@-1:00007 455G 12G 443G 3% /var/tmp 
procts 4.0K 4.0K OB 100% / PEO 
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Listing 3. Creating a Master PFS 


cca ec 

# 1s 

home tmp nei List O0y 

# hammer pfs-master Datal 

Creating PFS #8 succeeded! 

Datal 
sync-beg-tid=0x0000000000000001 
sync-end-tid=0x00000002bcc53f£b0 
shared-uuid=19345892-d41b-11e3-9552-4587fc6b58Ff4 
unique-uuid=193458c4-d41b-11e3-9552-4587fc6b58f4 
label="” 
prune-min=00:00:00 
operating as a MASTER 


snapshots directory defaults to /var/hammer/<pfs> 


Listing 4. Configuring PFS 


# hammer viconfig /pfs/Datal 


# No configuration present, here are some defaults 


# you can uncomment. Also remove these instructions 


# 
#Ssnapshots ld 60d 
#prune ee om 


#rebalance ld 5m 


#dedup 1d 5m 
#reblock 1d 5m 
#CLeECOpy 30d 10m 


Listing 5. Snapshot information stored in FS Metadata 


+ ICG / DiS) Viis4 = Ixe oon ise il 


Welle 


7 ue we eers i 


Listing 6. Pruning a PFS 


# hammer prune /pfs/vms4-1xc 


0000000b98415a50 - Q000000b9841e0a0 








eo 


Pmiineuy /- 


Prune //: objspace 8000000000000000:0000 


0000000b983c2cd0 
OUCOOT0bFS3aZ2590 
0000000b6983a2170 
0000000b69839a080 
0000000b980daa40 
0000000b97d437a0 
00000006979c3640 
0000000000000001 


9 snapshots 


0000000b98415a50 
OUCOOD0D FS 3ceZ2ed0 
0000000b983a2390 
OWOOOR0 9S sa21 70 
0000000b9839a080 
0000000b980daa40 
0000000b697d437a0 
0000000b6979c3640 


C7 a eee ete estes Cate deess Ta oe ae lnel 


Prune //: prune min is 0d/00:00:00 


var.tmp 








EO rae @ Prune // succeeded 

drwxr-xr-x 1 root wheel 0 Noy 3 2012 vms4 Pruned 0/6387 records (0 directory entries) and 0 bytes 
drwkxr-xr-x 1 root wheel O Ney 3 2012 vmsx4 

ee Listing 7. Reblancing B-Tree 

Mom May 12012:34: 32) 1ST 204 # hammer rebalance /pfs/vms4-lxc 

# hammer snap /pfs/vms4-lxc rebalance start 8000000000000000:0000 

# date Rebalance /pfs/vms4-lxc succeeded 

Mone May i2 1234.57 157 2014 Rebalance: 

# hammer snapls /pfs/vms4-lxc |grep “12:34” 370044 btree nodes scanned 

0x0000000b98415a50 DO S0oa 7 aoe 131 btree nodes deleted 

# cd /pfs/vms4-l1xc/@@0x0000000b98415a50 O*collision retries 

i eee 61349 btree nodes rebalanced 

cere ll 

drwxr-xr-x 1 root wheel 0 Nov 5 2012 vms4 # hammer dedup <pfs> 

drwxr-xr-x 1 root wheel 0 Nov 5 2012 vmsx4 
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root periodic weekly 


root periodic monthly 
Let us look at the first option snapshots. 

The option ia tells hammer cleanup that a snapshot of the 
PFS should be taken every 24 hours. The option 60a tells 
‘hammer cleanup’ to retain snapshots until they are 60 
days old. Snapshots older than 60 days will be removed 
in this configuration. The second option in prune. 

By default the Hammer file system retains every change 
made to it. The prune option tells ‘hammer cleanup’ to 
make the snapshots “fine grained” (i.e., all changes that 
happened between the snapshots will be removed). 

The option ia tells ‘hammer cleanup’ that the PFS 
snapshots should be pruned every 24 hours. The option 
5m tellS hammer cleanup that the pruning should only hap- 
pen for 5 minutes. The third option is rebalance. It tells 
‘hammer cleanup’ to rebalance the B-Tree. Nodes with a 
small number of elements will be combined and element 
counts will be smoothed out between nodes. The option 
1a tells hammer cleanup to rebalance the B-Tree every 
24 hours. The option 5m tells hammer cleanup to run re- 
balance only for 5 minutes. 

The fourth option iS dedup. This tellS hammer clean up 
to deduplicate the PFS. Dedup runs on block level and 
removes duplicate data from the PFS. This option is very 
useful if your PFS contains many similar copies of files. 
The option ia tells the hammer cleanup to run deduplica- 
tion on the PFS every 24 hours. The option 5m limits the 
deduplication to 5 minutes. The fifth option is reblock. 

This option tells ‘hammer cleanup’ to defragment 
the PFS to a level of 95% and free up space for reuse. 
The option id tells hammer cleanup to reblock every 24 
hours. The option 5m tells hammer cleanup to run reblock 
for 5 minutes. The sixth option is recopy. 

This option tells hammer cleanup to do a full defrag- 
mentation of the PFS. The option 304 tells ‘hammer clean- 
up to run recopy every month. The option 10m tells ‘ham- 
mer cleanup’ to run recopy for 10 minutes. 

These parameters must be retuned according to the da- 
ta, the volume of data and the frequency of writes inside 
the PFS. For example one of my PFSes with massive Da- 
ta has the following configuration: 


# hammer config /pfs/Data 
snapshots ld 30d 
prune ld 15m 


rebalance ld 5m 


dedup ld 25m 
reblock ld 15m 
recopy 30d. 15m 


www.bsdmag.org 


These can be run manually as the following commands: 
# hammer snap <pfs> 


Let us manually snapshot a PFS vms4-1xc. If no snap- 
shot directory is mentioned, information on how to ac- 
cess the snapshot will be stored in the filesystem meta- 
data (see Listing 5). Here we see that the command 
hammer snap <pfs> IS used to snapshot a PFS. The com- 
mand hammer <pfs> IS used to view the snap- 
shots. And the snapshot ID with ee appended to its front 
can be used to browse the snapshot contents. 

In order to have a symlink to browse the snapshots, one 
can use the format: 


snapls 


# hammer snapshot <pfs> <alternate snapshot symlink 


directory> “tag” 


The hammer cleanup utility, on the other hand, automati- 
cally creates a SymLink in /var/nammer/<pfs> when it is 
run through periodic 


# hammer prune <pfs> 


Let us now see how manual pruning works on a PFS 
(Listing 6). Prune removes all the changes in the file sys- 
tems between snapshots and also the snapshots that 
have expired. It also shows the pruning details. 


# hammer rebalance <pfs> 


Now let us rebalance the B-Tree manually (see Listing 7). 
Before running hammer dedup manually it is possible 
to find how much space will be freed using the command 


# hammer dedup-simulate 


# hammer dedup-simulate /pfs/vms4-l1xc 
Dedup-simulate running 
Dedup-simulate /pfs/vms4-lxc succeeded 


Simulated dedup ratio = 2.45 


The higher the dedup ratio, the larger the amount of Da- 

ta that can be contained in much less space. 
More real world scenarios where hammer 

helpful can be found in the following two links: 


dedup WaS 


¢ http://lists.dragonflybsd.org/pipermail/users/2011-July/087 
725.html 

¢ http://leaf.dragonflybsd.org/mailarchive/users/2011-07/ 
msg00026.html (Listing 8) 
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After the de-dup we find that only 87 GB were used to 
contain 214 GB of Data. 


# hammer reblock <pfs> <fill% > 


Let us now defragment the PFS (Listing 9). When man- 
ually run, the default fill percentage is 100% and will 
cause the file system to be completely defragmented. 
All specified element types will be reallocated and re- 
written. If you wish to quickly free up space instead you 
can do so by specifying a smaller fill percentage, such 
as 90% or 80% (the = suffix is not needed). 


How To Implement Hammer Pseudo File 
System( PFS ) Slave Mirroring From PFS Master 

| have two 500 GB hard disks both with the Hammer file 
system. | want to create a master PFS on one hard disk 
and a slave PFS on the other disk. | want to mirror the 
data continuously from the master PFS to the slave PFS. 
This will help me avoid long ‘fsck’ and RAID parity rewrite 
times after an unclean shutdown, and also will give me a 
setup somewhat like RAID 1. 


Creating the master PFS on Disk 1 

The Hammer file systems on Disk 1 and Disk 2 are mount- 
ed in /etc/fstab according to the following. 

/dev/ad4sih hammer rw Z Z 
/dev/ad6ésih 


/Backupl 
/Backup2 hammer rw 2 2 
Go to the Hammer file system on Disk 1. We will be cre- 
ating a master PFS called test and will be mounting it 
using a null mount. If you don’t have a directory called 
pfs under the Hammer file system you should create it. 


# pwd 
/Backupl 
# mkdir pfs 


If you already have the pfs directory under the Hammer file 
system you can skip the above step and continue (see List- 
ing 10). Now the master PFS ‘test’ is created. Make a note 
of its ‘shared-uuid’ because we will need to use that to cre- 
ate the slave PFS for mirroring. You can mount the PFS un- 
der the Hammer file system on Disk 1 by doing the following: 





Listing 8. De-duplicating a PFS 
# hammer dedup /pfs/vms4-1xc 
Dedup running 
Dedup /pfs/vms4-lxc succeeded 
Dedup ratio = 2.45 
214 GB referenced 
87 GB allocated 
18 MB skipped 
IE GING, io livesvejais 
0 SHe collars tone 
3 bigblock underflows 
0 new dedup records 
0 


new dedup bytes 


Listing 9. Defragmenting PFS 


# hammer reblock /pfs/vms4-1xc/ 
reblock start 8000000000000000:0000 free level 0 


Reblock /pfs/vms4-lxc/ succeeded 
Reblocked: 
187016/187017 btree nodes 
4404440/9444810 data elements 
47942945645/231120183341 data bytes 





Listing 10. Creating a Master PFS to mirror from 

# hammer pfs-master /Backupl/pfs/test 

Creating PFS #3 succeeded! 

/Backupl1/pfs/test 
sync-beg-tid=0x0000000000000001 
sync-end-tid=0x000000013f644ce0 
shared-uuid=9043570e-b3d9-llde-9bef-011617202aa6 
unique-uuid=9043574c-b3d9-1llde-9bef-011617202aa6 
label="” 

prune-min=00:00:00 

operating as a MASTER 


snapshots dir for master defaults to <fs>/snapshots 


Listing 11. Creating a Slave PFS to mirror from Master 


# hammer pfs-slave /Backup2/pfs/test shared- 
uuid=9043570e-b3d9-11de-9bef-011617202aa6 

Creating PFS #3 succeeded! 

/Backup2/pfs/test 

sync-beg-tid=0x0000000000000001 

sync-end-tid=0x0000000000000001 

shared-uuid=9043570e-b3d9-11lde-9bef-011617202aa6 

unique-uuid=97d77£53-b3da-llde-9bef-011617202aa6 

slave 

label="" 

prune-min=00:00:00 

operating as a SLAVE 


Snapshots directory not set for slave 
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Working with Hammer File System and PFSes 


# mkdir /Backupl/test 
Now Edit /etc/fstab to contain the following line. 


/Backupl/pfs/test /Backupl/test null rw 0 0 


Now mount the PFS and verify by doing. 


# mount -a 
# mount |grep test 
/Backup1/pfs/@@-1:00003 on /Backupl/test (null, local) 


Creating the slave PFS on Disk 2 

Note that we must use the shared-uuia of the master PFS 
to enable mirroring (See Listing 11). The slave PFS is not 
mounted but a symlink can be created in the root Hammer 
file system to point to it. 


# In -s /Backup2/pfs/test /Backup2/test 
# ls -l /Backup2/test 
17 Oct 8 12:07 /Backup2/test 


1 root wheel 


-> /Backup2/pfs/test 


lrwxr-xXr-xX 


(This step is optional, the PFS can be read through the 
Original magic symlink /Backup2/pfs/test). 


Copying contents from PFS on Disk 1 to PFS on 
Disk 2 to enable mirroring 

The slave PFS will be accessible only after the first 
Mi rror=Ccopy operation. 


# touch /Backupl/test/test-file 
# ls /Backupl/test/ 

test-file 

# sync 


We do the “sync” so that the file creation operation is 
flushed from the kernel memory. Mirroring works only on 
operations flushed from the kernel memory. The slave PFS 
will be accessible only after the first mirroring operation. 


# hammer mirror-copy /Backupl/test /Backup2/pfs/test 

histogram range 000000013f6425fd - 000000013f644d60 

Mirror-read: Mirror from 0000000000000002 to 
000000013f644d60 

Mirror-read /Backupl/test succeeded 

# ls /Backup2/test/ 

test-file 

Enabling continuous mirroring. The hammer mirror- 

stream Will automatically restart if the connection is lost 
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so you only need to start it up once at boot. You can do 
this with an @reboot entry In the crontab. 


@reboot /sbin/hammer mirror-stream /Backupl/test 


/Backup2/test 


If the disk on which the slave PFS resides goes offline then 
another disk can be attached and another slave PFS can 
be configured as said above. If the disk on which the mas- 
ter PFS resides goes down, then the slave PFS can be up- 
graded to become a master PFS using the command: 


# hammer pfs-upgrade <slave pfs> 


and writes continued to it. Another disk can be attached 
and another slave PFS can be configured to this new 
master PFS. 


PFS Mirroring through a network 

The slave PFS need not be on the same system as the 
master PFS. The system where the slave PFS resides 
can be many miles apart, even in another continent, if it is 
connected to the system in which the master PFS resides 
through a network. If the IP address of a system with mas- 
ter PFS is 10.0.1.1 then an entry as shown below in the 
crontab of the system in which the slave PFS resides will 
start and continue remote mirroring when the system with 
the slave PFS boots up. 


@reboot /sbin/hammer mirror-stream root@10.0.1.1:/Backupl1/ 


test /Backup2/test 


For this to work SSH key based access should be en- 
abled from the slave PFS system’s root user to the mas- 
ter PFS system’s root user by copying the contents of 
the slave PFS system's /root/.ssh/id _ rsa.pub file to the 
master PFS system's /root/.ssh/authorized _ keys file. 

Finally in order to delete a PFS simply rm -rf won't do. 
You have to use the command: 


# hammer pfs-destroy <pfs> 

Conclusion 

The HAMMER file system is a neat implementation of 
a copy-on file system with extra features. It uses much 


less RAM than ZFS and it is a good choice for any kind 
of operation. 


SIJU GEORGE 
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Running Javascript 


Client and Server Side 


with MeteorJS on FreeBSD 11 


Javascript is everywhere, in web browsers, servers 
(NodeJS), smartphones (Phonegap/Cordova). MeteorJS 
takes advantage of this situation to revolutionize web 
frameworks. In this article, we'll introduce MeteorJS and 
demonstrate an example app deployed on FreeBSD 11. 


What you will learn... 
- Some key features of MeteorS 
¢ Howto build a realtime chat with a few lines of code 


Twitter) is an Open Source isomorphic javascript 

framework. It means that mostly data structures 
are available on the client and on the server, without the 
need to plan an API (database everywhere). 

This is possible because the same programming lan- 
guage is used on the client (browser) and server and 
because the framework uses a synchronization pro- 
tocol (DDP) to fill on-demand the data structures on 
the client. 

Another big benefit is that you don’t have duplicated 
code, because you can share it. Imagine validation func- 
tions, url router, HTML template generation... you can de- 
cide to execute the code of the client, server or both. 

lf you want to over-simplify, “Meteor is to NodeJS what 
Ruby on Rails is to Ruby”. It isn’t completely true because 
Meteor isn't only server side like other NodeJS frame- 
works, but it has the philosophy of Convention Over Con- 
figuration, SO you can immediately concentrate on solving 
your domain problem and eventually override that behav- 
ior later. 

Other important pieces are MongoDB/Minimongo which 
allow the management of the database in javascript and 
the Future library which reduce the “callback hell” javas- 
cript effect. 
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What you should know... 


- Basic web programming 


Installation on GNU/Linux or Mac OS X 
(Development mode) 
Meteor runs on known multiplatform UNIX/Linux Open 
Source software, but currently only GNU/Linux and Mac 
OS X are the official supported platforms for development. 
This isn’t a big problem when you deploy a Meteor app on 
FreeBSD server, because it became almost a NodeJS + 
MongoDB app, but we'll see it later. 

So type in the terminal: 


S$ curl https://install.meteor.com/ | sh 


Running the command above on a supported plat- 
form will install a bundled Meteor with all the depen- 
dencies needed. 


The “Minimal Chat” example 
The Realtime applications, like chat, is really where Me- 
teor shines in its simplicity. All the workflow will be around 
the terminal (with meteor command running), the web 
browser and your preferred text-editor. 

Let's create a new app: 


S meteor create ChatApp 
S$ cd ChatApp 
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™ Then replace the files like this: Listing 1 and List- 
Se ene uee, ing 2. Now run the meteor command again without 
<!-- ChatApp.html --> arguments: 
<head> 
<title>Meteor Minimal Chat</title> ~/ChatApp * meteor 
</head> 
[[[[{ ~/ChatApp ]]]]] 
<body> 
{i> Charhbist) } => Started proxy. 
ie Sete GEN tay) => Started MongoDB 
<7 Oay => Started your app. 
<template name="chatList”> => App running at: http://localhost:3000/ 
<h1>Messages</h1> 
lf you open your web browser at http://local- 
{{#each messages}} host:3000/ you should see a working chat, but let’s 
<p> explain what happened. 
Sotrong (user): strong 4 text) | “3 EI > vcatnost 3000 ankle 
7 a Q Elements Network » = &@ « 
{{/each} } Messages — frame> ¥ 
</template> » Meccages. updated {_id:"vnapStath2TFxa 
Me: ciao eer 
Update failed: Access denied. Ne 
<template name="chatEntry”> somebody: hey! eiitastins fae aatial "weet. 
debug is:43 
<input id="user” placeholder="username” /> me: this is the last one oe ae je 
<input id="text” placeholder="your text” /> = — — Te 
<buttom 1d="send” >Send</buctton> ONES: "YNSESTARNDTENGGhY” 
</template> ts: 1399592303687 
Listing 2. ChatApp.js 
// ChatApp.js 
Messages = new Meteor.Collection(‘messages’); Figure 1. The running app with a javascript console 
if (Meteor.isClient) { ChatApp.html looks like an HTML file but it isn’t. It is 
Template.chatList.helpers ({ HTML plus Spacebars (a Handlebars / Mustache -like 
‘messages’: function () { syntax). chatList and chatEntry are the partial tem- 
return Messages.find({}); plates. Then it isn't used directly but is compiled to a 
} javascript function. You can see it by opening the web 
1); browser console (command + shift + c on Chrome) 
and typing Template.chatEntry(). 
Template.chatEntry.events ({ ChatApp.js is a javascript file where Messages is 
‘click #send’ : function () { defined, the collections where the data are stored in 
Messages. insert ( a persistent way on the server, and where the user 
{ user:$(‘#user’).val(), text:$(‘#text’) .val() } events are bound to the templates. messages is the 
); cursor iterator used by the {{#each messages}} Cy- 
Me ee eee cng cle in the template and every time new data is add- 
ed or changed, the template is partially or complete- 
es ly re-rendered. By default Meteor is also magic, so 
4.0K 4.0K 0B 100% /proc let's remove some packages to better understand 
what happens. 
meteor remove autopublish insecure 
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¢ autopublish is responsible for syncing/filling the collec- 
tion on the client. In the real world, the client should 
only see the documents (records for SQL users) that it 
really needs for performance and security reasons. 

¢ insecure is the package which doesnt restrict the ac- 
tions that a user could perform on the data (insert, 
update, delete). 


lf we try again now, the application doesn’t show any 
message and if we try to insert a new one, we get in 
the web browser console: insert failed: Access denied. 
So, let’s evolve the chat application. We create the cli- 
ent/ and server/ directories so we don’t need to check 
where we are with Meteor.isClient and the code on the 
server/ will never be sent to the client. 


S mkdir {client,server} 


Now the messages are back and we can also de- 
cide that the client will see just the latest 10 messag- 
es. Just replace the cursor with return Messages.find({}, 
{count:10}). We still can’t insert new messages; let’s fix 
It by adding an explicit rule that anybody can insert new 
messages. Reopen the ChatApp./js file and add these 
new lines below the Messages definition: Listing 4. 
Meteor has core packages to handle authentication with 
password or OAuth2 providers (like Facebook or Twitter) 
but we won't use them in this example, this is why userld 





Listing 3. Client/Subscribe.js 


/7 -elient/ subscribe, ys 


Meteor.subscribe(‘allMessages’ ); 


// server/publish.js 
Meteor.publish(‘allMessages’, function (opts) { 
return Messages.find({}); 


ae 


Listing 4. ChatApp.js 

// ChatApp.js 

Messages = new Meteor.Collection(‘messages’ ); 

Messages.allow({ 
LMicoGib mune MOnm(licet hel y «cl@e rat 


doc.ts = (new Date()).getTime(); 


return true; 
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is present. doc is the new document that will be added to 
the collection. So we could analyze, add other fields or 
validate it before the insertion in the database. 

In the example, a timestamp (fs) is added to every new 
message, so changing the publication (in publish.js) you 
can publish just the last 3 messages on the client. 

To apply these changes quickly and correctly, you need 
to remove the old messages without the timestamp with 
“meteor reset”. 


// server/publish.js 
Meteor.publish(‘allMessages’, function (opts) { 
return Messages.find({}, {sort:{ts:-1l}, limit:3 }); 


a 


You can check that the other messages really aren't avail- 
able on the client by checking the javascript console again: 


Messages.find() .fetch () 
->[Object, Object, Object] 


This is how Meteor manages the data, even if the data 
structures respond to the same methods the effective 
data available on the client depends on how the publish 
and subscribe methods are managed...and typing 


S meteor deploy minichat.meteor.com 


We obtain a live, public application that is available world- 
wide. You can really try this demo app at htto:/minichat. 
meteor.com. 


Deploy on FreeBSD 

As we said, the Meteor application can be considered a 
special NodeJS application. So if we want to deploy the 
app in our server instead, another command is useful that 
will pack everything needed. 


S meteor deploy chat.tgz 


Now we can move and unpack chat.tgz to the FreeBSD 
server and start with the system set up. 

Notes: The latest MongoDB production release is 2.6.x. 
Currently Meteor 0.8.x and FreeBSD 11 support Mon- 
goDB 2.4.x. | tried these steps on FreeBSD 11 but they 
may also work on FreeBSD 10. 

| assume you can use Sudo or you are root on the system. 


Installation of Meteor dependencies 


S$ sudo pkg install -y git node npm mongodb python gmake 
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A Node dependency needs to be recompiled on FreeBSD 
with g++ but clang++ (which is already installed) works in 
this situation. If you really need g++ install it, otherwise: 


S sudo: ln =s /usr/bin/clang++-/usr/bin/g++ 
Now we need to start the database 
S$ sudo service mongodb onestart 


It will start the MongoDB daemon, in a non-persis- 
tent way, if you want it at the next reboot add mongod _ 
enable="YES” tO /etc/rc.conf. 

The ground is ready, now you need a Meteor app to 
run. Where you unpacked chat.tgz, there should be a 
bundle/ directory. 


Run a Meteor app from a bundle 
This bundle also contains some Linux binaries, which 
must be rebuilt for FreeBSD. 


S$ cd bundle/server/node modules # or bundle/programs/ 
server/node modules/ on older Meteor versions 

S rm -rf fibers 

S$ npm install fibers@1.0.1 

> Co = 


Now you should be ready to run a basic Meteor app on 
FreeBSD; look at the official documentation for further 
env variables and tweaks. 


S$ PORT=3000 MONGO URL="mongodb://localhost:27017/myappdb” 


node bundle/main.js 


MeteorJS on FreeBSD 11 





Resources 

- http://docs.meteor.com — the official Meteor documentation 
https://atmospherejs.com — The community packages to ex- 
tend Meteor 
http://madewith.meteor.com — A gallery of apps and experi- 
ments built with Meteor 
http://discovermeteor.com — A Meteor book continuosly up- 


dated 

http://weuse.meteor.com — Where are the Meteor users on 
amap 

http://meteorhacks.com -— A blog about Meteor and its 
community 











Finally, you should see your Meteor app at http://your- 
FreeBSD-ip:3000. 


Summary 

We've just scratched the surface of the MeteorJS fea- 
tures. The realtime web application or single page appli- 
cation (SPA) are quite different from the canonical PHP 
web pages; but as we've seen, Meteor introduces new 
patterns that will save you many lines of code. 

The chat app we built will also provide the messages to 
the clients connected and will keep the data continuous- 
ly updated without the need of explicit AJAX calls or the 
need to handle the reconnections by ourselves. 


LUIGI MASELLI 


Luigi Maselli (hackerpreneur, freelance developer, passionate about 
the web and UNIX/Linux, blogger at http://grigio.org). 
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Understanding bhyve, 
the BSD hypervisor 








For along time now, virtualization has been an important 
part of an information system. FreeBSD has “jails”, and ina 
lot of cases, it’s ideal, secure and flexible. But, sometimes we 
need to use other operating systems. We need bhyve, the 
“BSD hypervisor’, which is a legacy-free hypervisor/virtual 
machine manager developed on FreeBSD. 


What you will learn... 

¢ basics about freebsd virtualization 

¢ introduction to bhyve and it state 

« discover works and works in progress about it 
¢ create your first virtual machine 


hypervisor allows the operation of one or more 
Ae operating systems within a host operating 

system. bhyve was merged from the bhyve proj- 
ects branch into the FreeBSD head on January 19th, 
2013. It was officially released on January 20th, 2014 
as part of FreeBSD 10.0. It is mainly developed by Peter 
Grehan [12] and Neel Natu. 

In this article, we will try to understand what bhyve is 
and we will prepare “Playing with bhyve, the BSD hyper- 
visor’, the second part of this article where we will create 
guests from different OSes in a FreeBSD host with bhyve. 


General Considerations 

bhyve is a Type-2 hypervisor (Type 1 native/bare metal 
hypervisor (VMware, Virtualbox ...) Type 2 hosted hyper- 
visor (Xen, KVM ...) that runs on the FreeBSD platform. 
It currently only runs FreeBSD (9.x or later) and Linux 
guests. Current development efforts aim at widening sup- 
port for other x86 64-bit operating systems. After a great 
deal of work by all involved parties, bhyve was shipped 
as part of FreeBSD 10.0-RELEASE. Increased interest in 
bhyve and the first usable version have provided great 
feedback and many bug reports. Sometimes, you will 
still see the terms “BhyVe”, but the developers hopefully 
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What you should know... 
¢ basic unix shell commands 
¢ basic understand of virtualization 


depreciated the name “BHyVe” and simply refer to it as 
“bhyve” (hopefully :p). And don’t miss the FreeBSD hand- 
book part about bhyve [26]. 


Hardware Considerations 

bhyve currently supports Intel processors with Extended 
Page Tables (most of Atom C2000, Core i3, i5, i7 and re- 
lated Xeon processors are supported). AMD RVI (Rapid 
Virtualization Indexing, formerly Nested Page Tables) sup- 
port currently resides in a separate development branch. 
“Barcelona” class and newer AMD processors should in- 
clude the required RVI extension and as with Intel proces- 
sors, the presence of the “POPCNT” (POP Count) pro- 
cessor feature in dmesg (8) will also indicate RVI support. 

For example in the dmesg of a FreeBSD 10.0-RE- 
LEASE-p2, you will see for an i7: Listing 1. 

Nested paging support is available in bhyve starting 
from FreeBSD 10.0 and provides useful features such 
as transparent Superpages and overprovisioning of guest 
memory. Nested paging is a hardware technique used to 
reduce the overhead of memory virtualization. Specifical- 
ly, this refers to Intel EPT (Extended Page Tables) and 
AMD NPT (Nested Page Tables). During AsiaBSDCon 
2014 [15], Neel Natu and Peter Grehan gave an excellent 
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presentation called « Nested Paging in bhyve » [10]. 
You can run bhyve under VMware nested VT-x but you 
must enable it. bhyve support of nested VT-x (bhyve un- 
der bhyve) is investigated. PCI passthru with bhyve works 
on systems that have the Intel IOMMU (aka VT-d feature/ 
support). This can be determined by looking fora DMAR 
entry in the ACPI tables (ex: acpidump -t | grep DMAR). 

bhyve supports AHCI devices, which improve perfor- 
mance thanks to non-blocking I/O. Raw disk images 
and any block device such as ZFS zvols and iSCSI tar- 
gets, plus ISOs using the AHCI driver are supported as 
boot media. 

Because it would simplify the booting of non-FreeB- 
SD OSes and integrated video support implementation, 
bhyve would support UEFI/BIOS (BSD-licensed BIOS re- 
placement) [23]. And closely related to UEFI/BIOS sup- 
port, bhyve will support VGA graphics. 

bhyve has an “out-of-band’/"lights-out management” se- 
rial console, which can be accessed in several ways with 
your preferred nullmodem/pty. Stdio output can also be 
sent to a terminal multiplexer like tmux [24] or screen [25]. 

bhyve has ACPI support; proper shutdown of guest OS- 
es has been implemented with SVN revision 259826. AC- 
Pl suspend and resume features are currently under de- 
velopment [21]. As a legacy free hypervisor, a bhyve host 
requires the Extended Page Tables (EPT) feature found 
on “Nehalem” and newer generations of Intel proces- 
sors. This requirement eliminates the need for memory 
management routines that are traditionally implemented 
in software and yields virtually bare metal guest perfor- 
mance. A bhyve guest requires VirtlO network and block 
devices drivers, which were already available in FreeBSD 
8/9/10 at the time of bhyve’s import. 


Software Considerations 
An overview of how it works from the bhyve web site [30]: 
see Figure 1. 





bhyve can be built and operated on FreeBSD 9.0 
amd64 but its active development is taking place on 
11-CURRENT amd64. bhyve is included in FreeBSD 
10.0-RELEASE amd64. Since the commit r258141 on 
November 14th, 2013, FreeBSD has its own allocation of 
IEEE Organizationally Unique Identifiers (check «Search 
the Public MA-L Listing» from the IEEE [29]) and bhyve 
will be allocated a sub-set of these and have its own 
MAC address allocation. 

H8=-9C-FC. (hex) FreeBSD Foundation 
589CFC (base 16) FreeBSD Foundation 

P.O. Box 20247 
Boulder CO 80308-3247 
UNITED STATES 


bhyve uses the VirthO (MSI and MSI-X) set of devices 
for virtualized storage and network devices. bhyve sup- 
ports MSI and MSI-X interrupts although MSI interrupts 
are not part of the VirtlO specification. 

bhyve supports any version of FreeBSD amd64 with 
VirtltO support (kern.vm_guest sysctl will report if FreeB- 
SD is under KVM or bhyve.), plus OpenBSD amd64, and 
GNU/Linux amd64 (some versions of centos / redhat / 
debian / opensuse / ubuntu have been tested successful- 
ly). At the bhyvecon 2014 [14], you have a great example 
with CentOS in “Depenguinating your infrastructure” [16]. 
For the story, Illumos support is under active development 
and bhyve has support for i386 VMs. 

bhyve consists of the vmm.ko loadable kernel module 
(kernel module for VT-x, VT-d and hypervisor control), 
the libvmmapi (userland API, the front-end to the vmm.ko 
chardev interface) library, bnyve (userland part of hyper- 
visor, emulates devices), bhyveload (loads guest operat- 
ing system) and bhyvectl (a management tool) utilities (in 
total these binaries are under 500K). bhyveload only sup- 
ports FreeBSD. You need another OS Loader to support 





Listing 1. dmesg extract 


eae iD 950 
Id = 0x106a5 


CPU: Intel(R) Core(TM) @ 3.07GHz 


Origin = “GenuinelIntel” 


Rook, Sohe poo, al, LM PEE 


AMD Features=0x28100800<SYSCALL, NX, RDTSCP, LM> 


AMD Features2=0x1<LAHF> 


ESCs P-State Invarklant, PerroOrmance Statistuies 





(S035 64 Mav Ks -elass Py) 
Family = 0x6 Model = Oxla 
Fearures—Uxbrebibit<FPU, VME, DE, Poh, loC, MSR, PAL, MCE, CXS ,APIC, SEP, MURR, PGE, MCA, CMOV, PAT, PSE36, CLELUSH, DIS, ACPI, MMX, EXS 


Bedbunes7 Ux seobd— ocho Dito o4 MON Done Pil DC iol, BMZ po oot oe, CClG, abe DCM SoA. cola Oren i 


Stepping = 5 
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other OSes. grub2-bhyve [2] is the solution. It’s a modified 
version of grub2, runs on the host OS (FreeBSD) and can 
load Linux and OpenBSD. 

Libvirt [7] includes bhyve support. Enabling bhyve sup- 
port allows consumers to use bhyve in libvirt-ready ap- 
plications without major efforts.Currently, libvirt supports 
almost all essential features of bhyve, such as Virtual 
Machine lifecycle (start, stop), bridged networking, and 
virtio/SATA driver support. The work continues to imple- 
ment more API calls and to cover more features offered 
by bhyve. 

Virt-manager with this commit [5] shows that it supports 
bhyve too. 


Other Virtualisation Stuff Under FreeBSD 
Because | can’t speak about bhyve without a word about 
jails, here are just a few words to show some differences. 
Jails are isolated virtual instances of FreeBSD that all 
run over the same kernel. It’s a kernel-level virtualization 
environment. You cannot install another operating sys- 
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tem in a jail. Process in jails is just a normal process for 
the kernel. Isolation between environments is done by 
some «kernel tricks». Jails share one kernel with all the 
others — if the kernel panics, all jails are dead. bhyve is a 
hypervisor, it virtualizes a machine. You can run a full op- 
erating system in a virtual machine. From the guest OS, 
it looks like real hardware. A virtual machine is a normal 
process for host operating systems. A virtual machine 
does not share the kernel, it is completely isolated from 
the others. 


bhyve in the «real world» 

People do a lot of stuff with or for bhyve. It’s time to in- 
troduce some examples. To start, bhyve.org provides the 
script ‘vmrun.sh’ [1] written by the bhyve developer Neel 
Natu, and a FreeBSD 10 installation iso image (release. 
iso); a bootable disk image (diskdev) can be automatically 
created by the standard FreeBSD installer. To continue, 
they provide several scripts to make the creation and op- 
eration of custom bhyve guests easier. 
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BSDRouterProject [3] provides some scripts for setting- 
up labs with. Ezhyve’s [6] goal is easier creation of bhyve 
VMs. CBSD (management layer written for the FreeB- 
SD jails subsystem), since version 10.0.6, has started to 
work with bhyve. 

You can see in the PetiteCloud hypervisor support ma- 
trix [4] that bhyve is an option and you can do some set- 
up with it. PetiteCloud is a 100% Free Open Source and 
Open Knowledge Cloud Foundation Layer for small non- 
data center mini-/private-clouds. 

From OpenFest 2013, to have some stuff about bhyve 
but more globally about virtualization, read «the BSD hy- 
pervisor» by Paul Schenkeveld [28]. 

At bhyvecon 2014, | was particularly interested in the 
concept behind OSv and the couple OSv/bhyve. OSv 
[17] is a new open-source operating system for virtual- 
machines designed to execute a single application on 
top of a hypervisor, resulting in superior performance 
and effortless management. At the bhyvecon Takuya 
ASADA (@syuu1228) in «OSv on bhyve» [18], showed 
us that it can be a working solution. 

On March 13, 2014, Craig Rodrigues gave a talk to 
a packed room during the monthly BAFUG meeting at 
Hacker Dojo. The talk was about the progress of the effort 
to date; they have set up the Jenkins Continuous Integra- 
tion system inside the FreeBSD cluster with the use of 
bhyve VMs [19]. 

At AsiaBSDCon 2014, you can read an excellent pa- 
per about visualizing Unix system activity using collectd, 
its site-specific alternatives, Graphite, DTrace and Free- 
BSD called «Visualizing Unix: Graphing bhyve, ZFS and 
PF with Graphite» [20] by Michael Dexter. 


Create your first virtual machine in bhyve 
Let’s start by a first minimal VM 


root@akatsuki:~ # uname -a 

FreeBSD akatsuki 10.0-RELEASE-p2 FreeBSD 10.0-RELEASE-p2 
#0: Tue Apr 29 17:06:01 UTC 2014 root@amd64-builder. 
daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64 

root@akatsuki:~ # mkdir /home/vm 


root@akatsuki:~ # cd /home/vm 
load the bhyve kernel module and verify for if_tap presence 


root@akatsuki:/home/vm # kldload vmm 
root@akatsuki:/home/vm # kldstat | grep if tap 
ft 1 Oxffffffff8lbdf000 5545 if-tap.ko 
root@akatsuki:/home/vm # 
root@akatsuki:/home/vm # kldstat |grep vmm 


4 1 OxfffLffLf8lace0000 lbefed vmm. ko 
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The BSD Certification Group Inc. 
(BSDCG) is a non-profit organization 
committed to creating and 
maintaining a global certification 
standard for system administration 
on BSD based operating systems. 





® WHAT CERTIFICATIONS ARE AVAILABLE? 


BSDA: Entry-level certification suited for candidates 
with a general Unix background and at least six months of 
experience with BSD systems. 


BSDP: Advanced certification for senior system administrators 
with at least three years of experience on BSD systems. 
Successful BSDP candidates are able to demonstrate 

strong to expert skills in BSD Unix system administration. 


@ WHERE CAN I GET CERTIFIED? 


We're pleased to announce that after 7 months of 
negotiations and the work required to make the exam 
available in a computer based format, that the BSDA 
exam is now available at several hundred testing centers 
around the world. Paper based BSDA exams cost $75 USD. 
Computer based BSDA exams cost $150 USD. The price of 
the BSDP exams are yet to be determined. 


Payments are made through our registration website: 
https://register.bsdcertification.org//register/payment 


@ WHERE CAN I GET MORE INFORMATION? 


More information and links to our mailing lists, LinkedIn 
groups, and Facebook group are available at our website: 
http://www.bsdcertification.org 


Registration for upcoming exam events is available at our 
registration website: 
https://register.bsdcertification.org//register/get-a-bsdcg-id 
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My ethernet card is re1. Create a bridge and a tap net- 
work interface that you add to the bridge: 


root@akatsuki:/home/vm # ifconfig bridge0 create 
root@akatsuki:/home/vm # ifconfig tap0 create 
root@akatsuki:/home/vm # sysctl net.link.tap.up on open=1 
net. link. tap.up-on open? Do=<- 1 

root@akatsuki:/home/vm # ifconfig bridge0 addm rel addm tap0 
root@akatsuki:/home/vm # ifconfig bridge0 up 


root@akatsuki:/home/vm # 
We download an iso to install: 


root@akatsuki:/home/vm # fetch ftp://ftp.freebsd.org/pub/ 
FreeBSD/ISO-IMAGES-amd64/10.0/FreeBSD-10.0-RELEASE- 
amd64-bootonly.iso 

FreeBSD-10.0-RELEASE-amd64-bootonly.iso 100% of 209 


MB 1200 kBps 02m59s 


We are on FreeBSD 10, let’s create a disk image to use 
for the VM: 


root@akatsuki:/home/vm # truncate -s 25g bsdmag.img 


root@akatsuki:/home/vm # ls -la 


total 104 

drwxr-xr-x 2 root wheel al4 May © 2atl12 

drwxr-xr-x 3 root’ wheel Slz May 6 23710 

-rw-r--r-- 1 root wheel 26843545600 May 6 23:12 
bsdmag. img 


We copy/modify the script written by bhyve developer neel@: 


root@akatsuki:/home/vm # cp /usr/share/examples/bhyve/ 
vmrun.sh bhyvebsdmag.sh 

root@akatsuki:/home/vm # chmod +x bhyvebsdmag.sh 

root@akatsuki:/home/vm # vi bhyvebsdmag.sh 

root@akatsuki:/home/vm # diff -u /usr/share/examples/ 
bhyve/vmrun.sh bhyvebsdmag.sh 

--- /usr/share/examples/bhyve/vmrun.sh 2014-02-02 
13:32:01.000000000 +0100 

+++ bhyvebsdmag.sh 2014-05-06 23:34:53.000000000 +0200 

G@@ =32,11 +32, 11. €e 

FBSDRUN=/usr/sbin/bhyve 


DEFAULT MEMSIZE=512M 
=DEFAULT CPUS=2 
DEFAULT CPUS=1 

DEFAULT TAPDEV=tap0 


-DEFAULT VIRTIO DISK=”"./diskdev” 
-DEFAULT ISOFILE="./release.iso” 
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+DEFAULT VIRTIO DISK="./bsdmag.img” 
+DEFAULT ISOFILE="./FreeBSD-10.0-RELEASE-amd64-bootonly. 





LA 


10 


usage() { 


echo “Usage: vmrun.sh [-hai][-g <gdbport>] [-m 





installation 





<memsize>][-d <disk file>] [-I <location of 
iso>][-t <tapdev>] <vmname>” 


root@akatsuki:/home/vm # 
We start the installation: 


# ./bhyvebsdmag.sh -i -I FreeBSD-10.0-RELEASE-amd64- 
bootonly.iso bsdmagVM fbsd10 


Do an install as usual. At the end, don’t forget to enter a 
shell on the installed system (and not directly exit). bhyve 
does not emulate a graphics card, you need to configure 
the serial console. 


# vi /etc/ttys 

# cat /etc/ttys|grep console 

i For virtual consoles, the correct type is typically xterm. 

# If console is marked “insecure”, then init will ask for 
the root password 

off secure 


#console unknown 


console “/usr/libexec/getty std.9600” 


none 
xterm on secure 
# Dumb console 


# 


Then reboot the VM and choose reboot from the beastie 
menu to exit from the VM. 


# reboot 


We are back to our host, now let’s start without the in- 
stall disk and test the VM. 


root@akatsuki:/home/vm # ./bhyvebsdmag.sh bsdmagVM 
Wait for boot and login: 

root@bsdmagVM:~ # uname -a 

FreeBSD bsdmagVM 10.0-RELEASE FreeBSD 10.0-RELEASE #0 


e260789: Tho Jan 16 22:34:59.UTC 2014 
freebsd.org:/usr/obj/usr/src/sys/GENERIC 


root@snap. 
amd64 
root@bsdmagVM:~ # 
root@bsdmagVM:~ # ifconfig vtnet0 
vtnetO: flags=8943<UP, BROADCAST, RUNNING, PROMISC, SIMPLEX, MUL 
TICAST> metric 0 mtu 1500 
options=80028<VLAN MTU, JUMBO MTU, LINKSTATE> 
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ether 00:a0:98:ac:cf:ce 

inet 192.168.0.111 netmask Oxffffff00 broadcast 
192 .100.0.255 

nd6 options=29<PERFORMNUD, IFDISABLED, AUTO LINKLOCAL> 

media: Ethernet 10Gbase-T <full-duplex> 

status: active 


root@bsdmagVM:~ # df -akh 


Filesystem Size Used Avail Capacity Mounted on 
/dev/vtbd0p2 23G 2.4G 19G 11% i; 
devfs 1.0K 1.0K 0B 100% /dev 


root@bsdmagVM:~ # 
and some dmesg extract: 
root@bsdmagVM:~ # dmesg | grep BHY 


ACPI APIC Table: 
acpi0: <BHYVE BVXSDT> on motherboard 


<BHYVE BVMADT > 


root@bsdmagVM:~ # dmesg | grep virtio 

Virtio pci0: <VirtlO PCL Network adapter> port O0x2z000- 
Ox201f mem OxcOQ0Q00000-OxcO001ffF at device 2.0 on pcid 

vtnet0O: <VirtIO Networking Adapter> on virtio pci0 

virtio pci0: host features: 0x1018020 <NotifyOnEmpty, Statu 
s,MrgRxBuf,MacAddress> 

virtio pci0: negotiated features: 0x18020 
<Status,MrgRxBuf,MacAddress> 

Virt1lo pell? <VirtlO PC] Block adapter> port Oxz040-Ozn207T 
mem Oxc0002000-OxcO0O003fffF at device 3.0 on pci0 

VEDLKO? “VirtlO Block Adapter> on virtio perl 





Virtio peils host teatures: Ox10000044 <Ringindirect,;Block 
Size,MaxNumSegs> 

virtio pcil: negotiated features: 0x10000044 <RingIndirect 
,BlockSize, MaxNumSegs> 

root@bsdmagVM:~ # 


et voila! You have a bhyve VM up:) 


Conclusions 

As you can see, a little ecosystem starts to grow. And with 
some tests, you can see and check bhyve with guest as 
FreeBSD or some other OS. 

And please, understand that bhyve needs you, test it and 
if you think you have something relevant or a bug/crash 
to show, do consider using the sysutils/panicmail port with 
bhyve. And don’t forget that the best way to speak/ex- 
change about bhyve is the freebsd-virtualization@freebsd. 
org mailing list [8] and the #bhyve channel on Freenode [9]. 

This is what we are going to see in the second part; we will 
create VMs for FreeBSD, and some other operating systems 
to see how it works, through all creation and utilization steps. 


Thanks to: Loic Pefferkorn, Laurent Aune, BsDMag team 


IMAD SOLTANI 
Old school unix/linux lover 
http://twitter.com/ximad 
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Getting to Grips with 
the Gimp - Part 4 


In the fourth part in our series on the Gimp we will learn 
about guides and paths. 


What you will learn... What you should know... 
¢« How to manipulate images like a design pro « General PC administration skills 


ne of the most powerful tools supplied by 
C) the Gimp is the paths tool. Using Bezier 
curves, selections can be made accu- 
rately around curved objects, and minor ad- 
justments and transformations performed 
on the selection. This selection can be ™~ 
saved as a path and applied across lay- 
ers, making this function a great time- Do 
saver when working with complex im- 
ages. While Bezier curves can be Wy 
difficult to master, with practice they 
will become an essential part of your w 
toolkit. Depending on the image you 
want to manipulate, Beziers can be \ 
a hindrance though. Sometimes it is 6) 


quicker just to select the outline man- ™ 
ually. We will demonstrate both in this 
tutorial, and end up with a controversial ~ 
image with a text flowing to a path. ‘ 

Lets get started! > 
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Part 1 - Learning Bezier curves and paths 


& Menu BB cat: Stock Proto - fre =(unstied )-1.0 (cme. || Freel The Gimp « | bal OG ai) ail Sun 16 May, 63h 

: *(Untitted) 1.0 (RGB colour, 2 layers) 407400 - GIMP 

Blt Eda Select Were Image Layer Colours ‘bos. Altes (Widows Help 
; i] a , 


Step 1 
Create a new image 640 x 480 px. 


no 0, | Ho og eS ii 





: ~4 om F 
if BAe 4 F 
Step 2 SBAACDHA | 
Using the text tool, create the letter ~“"%# 7° *~&— 
B82 Ga aw 1 


“B” in pale yellow 400px high. Layer to Po : 
image size [Figure 1]. — Se eicwela a 
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genta [Figure 2]. Zoom in if required 7 
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the screenshot shown in Figure 3. 3 
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Step 4 

Click on the paths tool and, starting at 
the top left hand side of the “B’, click 
once and a small square and circle will 
appear. If you click and drag on the 
middle of the icon, you can easily re- 
position the center point. Note how the 
center of the selection will snap to the 
guides. Move the selection point back 
to the top left hand side of the “B”. 


Step 5 

Click once on the 3” vertical guide 
on the letter B which will result in a 
straight path [Figure 4]. 


Step 6 

Following the 7" vertical guide to the 
first upper curved bulge of the “B’, 
click once. This will result in a straight 
path bisecting the 4" vertical guide 
and the second horizontal guide [Fig- 
ure 5]. 
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Performance and 
Reliability is critical 
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Download syslog-ng Premium Edition 
product evaluation here 


Attend to a free logging tech webinar here 


BalaBit 


IT Security 


www.balabit.com Te 





syslog-ng log server 


The world's first High-Speed Reliable Logging™ technology 


HIGH-SPEED RELIABLE LOGGING 


m above 500 000 messages per second 





=m zero message loss due to the 
Reliable Log Transfer Protocol™ 


= trusted log transfer and storage 
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Step 7 

Holding the Ctrl key, click on the path 
where it intersects with the 5th vertical 
guide [Figure 6]. 


Oo Mens | I 


Step 8 

Click and drag the center point of the 
node so it follows the curve of the “B” 
[Figure 7]. 
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Step 9 
Click on the end node so that a square 
appears [Figure 8]. 


Step 10 

Press the + key to zoom in (Do not 
use the Zoom tool as you will lose 
your path) and add 2 nodes where the 
two upper and lower curves of the let- 
ter merge [Figure 9]. 
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Step 11 

Zoom out using the — key on the key- 
pad. Repeat steps 7-9 with the lower 
part of the upper curve and the upper 
part of the lower curve [Figure 10]. 


Step 12 

Carry on adding nodes and adjusting 
the center point of the nodes until you 
reach the bottom left hand side of the 
“B” [Figure 11]. 
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Repeat steps 4-13 with both inner 
areas of the “B”. Don't forget to click 
on the end node before attempting 
to create another, otherwise you will 
have an orphan node. If this happens, 
press Ctrl Z to recover. [Figure 13]. 
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sr = TE) te) afl Sun 18 May, 18447 © 
B.xcf-1.0 (RGB colour, 3 layers) 6400400 - GIMP - * * 





Step 15 











Click on the paths tab to see an out- s. Li rs 3 
line of the final path [Figure 14]. 
i 
a EE © af 
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Step 16 a a aS ae a een teegeiinn secegeery | Ss 
Right click on the path and choose =p yy as ae eel 
Path — Selection. Click on the quick  , 4 .44--.— 
mask button at the bottom left hand * =" *@ 2A 
. SHf/Ox#a. 
side of the canvas and youwillseethe . 9 ,.4¢ | is 
masked off areas [Figure 15]. = 
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Developing for Amazon Web Services? 
Attend Cloud DevCon! 





June 23-25, 2014 


San Francisco 
Hyatt Regency Burlingame 


www.CloudDevCon.net 





Attend Cloud DevCon to get 
practical training in AWS technologies 
f Develop and deploy applications to Amazon’s cloud 


f Master AWS services such as Management Console, 
Elastic Beanstalk, OpsWorks, CloudFormation and more! 


f Learn how to integrate technologies and languages 
to leverage the cost savings of cloud computing with the 
systems you already have 


f} Take your AWS knowledge to the next level — choose from 
more than 55 tutorials and classes, and put together your 


Register Early own custom program! 
and SAVE! 
f) Improve your own skills and your marketability 
as an AWS expert 

f& Discover HOW to better leverage AWS to help your 
ABZ Media Event organization today 
CloudDevCon = 
vos 





Amazon Web Services and AWS are trademarks of Amazon.com, line. 





Step 17 

Un-click the quick mask and right click 
on the path dialog and choose path 
tool. Note that when you click on a 
point on the curve, adjustment “arms” 
appear that will allow you to adjust the 
curve once It has been created, rather 
than just moving the center node [Fig- 
ure 16]. 


Part 2 - Fat cat logo 


Step 1 
Download the images from Table 1. 


Table 1. Details and credits 






Bengal cat 


Step 2 

Open the Cat image (Thanks, dio- 
goakio!) and using the free select tool, 
select a rough outline of the cat. The 
fine hairs on the cat are not too impor- 
tant, so don’t spend too much time on 
that part on the detail [Figure 17 with 
mask enabled to show detail]. 


Step 3 

Click on the scale tool and ensure both 
the X and Y axis is constrained. Scale 
to 50%, and click on Edit — Copy. 
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Getting to Grips with the Gimp - Part 4 





© Menu ©) [text bo Path | Gimp-t a uae 20.6 (Rca...) || FreeBSi The Gimp -  Tcreenshots! a te) ai) Sun 18 May, 14:57252 
Step 4 *[Untithed]-10.0 (RGB colour, 3 layers) 1LO24n768 - GIMP 


Create a new image 1024 x 768 px ss—“(‘“‘i‘i iit OC 
from File — New, add a transparent 
layer and click on Edit — Paste [Fig- 
ure 18]. 
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Anchor the layer, add another layer 
and using the ellipse select tool, cre- ; 
ate a circle around the middle ofthe cat * 
using Shift to constrain. Right click and Pa 
Select — to path. Click on the paths s i 
tag, click on the eye and you willsee © @* mon® - 
the circular path [Figure 19]. 7 
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i Menu 


Step 6 

Create the text “Fat cats of the world 
unite — Greed is good!” sized 16px 
Sans with a kern of 5px [Figure 20]. 
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Step 7 
Click on the layers tab and right click 


BEBoe.s.wupsza 
select — Text along path. Remove the , 4 (4 #--. 
text layer [Figure 21]. Spe AC Xs [Ml 
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Getting to Grips with the Gimp - Part 4 









Menus) ib “Untitled sch10.0 (6G. || |) FreeiSi The Gimp -/F.. || |i) Screenshots SE 48) al Sun 18 May, 212302 © 
Step 8 . “Wnbithed ec tLO0 (RG celgur, 3 liners) L024 e0 - GMP! 10.0 (GR colour, 3 layers) 1024x768 - GIMP 
Ble Edt Sebect Were Image Laer Colour Fook Altes Widows Help 


Return to the paths tab, select Path — - 


Selection and press Ctrl+.orCtrl+,to = oa ia tk ee 
fill with the background or foreground sss @ A mma , 
color as desired. From the menu, Se- é ule z ; oT 
lect — None [Figure 22]. = 3 
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Step 10 

Copy and paste the eyes from the 
Bengal cat and add a red layer to 
colour. Remove any colour from the 
rest of the image by inverting the se- 
lection and deleting. Select an area 
of the body and scale to make a “fat 
cat”, using a combination of the blur, 
smudge and erase tool to make a 
realistic body [Figure 24]. 
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While the resulting demo in this article isn’t perfect, time and perseverance will improve it! 


ROB SOMERVILLE 

Rob Somerville has been passionate about technology since his early teens. A keen advocate of open systems since the mid-eighties, he has 
worked in many corporate sectors including finance, automotive, airlines, government and media in a variety of roles from technical support, sys- 
tem administrator, developer, systems integrator and IT manager. He has moved on from CP/M and nixie tubes but keeps a soldering iron handy 
just in case. 
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mehilop 
Beiter. 
Reliable. 
Trusted by over 500 ISPs worldwide. 


Hyper is the first multimedia cache fully developed in Brazil, by Taghos. 
With Hyper, ISPs can save on network bandwidth while increasing 
content-delivery speeds, resulting in end-customer satisfaction. 






Features: 

ODS ee CNSR OIL UNO 

- Active monitoring 

- Automatic updates 

- Appliance or license 

- Easy deployment 

- Configuration and reports via 
web interface 





Cache 
Up to 15 Mbps 1x 11B 
Up to 50 Mbps 2x 11B - 
Up to 100 Mbps 8 G 2X 11B 1x 160 GB 
Up to 150Mbps | 3x 2 TB 1x 160 GB 
Up to 300 Mbps 5x 2 TB 1x 240 GB 
| Up to 500 Mbps 32 7x 2B 1x 480 GB 
0 Up to 1 Gbps 4G 10x 1 1B 1x 480 GB 
Remote Instal| Up to 2 Gbps 24x11B 3x 480 GB 


13000 Up to 3 Gbps 28G 32x 1 1B 5x 480 GB 


Using your hardware 


Visit us at WWW.taghos.com and start saving bandwidth today! 
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Interview with 





Luca Ferrarl 


Luca, please introduce yourself to our readers. 

| have a Computer Science degree and PhD and 
| have been an Adjunct Professor at Nipissing Univer- 
sity. | was involved with the Italian PostgreSQL Users’ 
Group (ITPUG) from the very beginning, being a co- 
founder, vicepresident and for the past year the cur- 
rent president. In my daily job | develop and maintain 
web based applications. | advocate Free and Libre 
OpenSource Software, that is in my opinion the only 
rational way of doing software. | am always interested 
in operating systems development and technologies 
and in new programming languages, with particular re- 
gard to the scripting ones. 

| live in Italy with my beautiful wife and lovely son. 


Could you tell us more about your background? 
My very first computer was a Commodore-64, a gift from 
my father who has always been better than me at pretty 
much every game we challenged. During the high-school 
| learnt the C language, it was the Microsoft DOS age. 
| remember even doing some trivial archery games us- 
ing the graphic libraries available back then. The shift to 
“nix happened during the University years, when | was 
first introduced to Unix and Linux. It took me some time 
to fall in love with the shell and the power of the *nix 
tools, and for a few years | was using only Linux as my 
main desktop and development machine. | began self- 
learning C++ and Java, finding the former better even 
if complex. | then improved my skills with Perl, a lan- 
guage that greatly influenced my culture and program- 
ming style. With the shell, Perl and C in my hands, | did 
the complete transition to Linux and began building my 
own set of utilities for automated and remote backup, re- 
porting, etc. | have to say that | switched to Linux simply 
because it was the operating system installed in the Uni- 
versity laboratories, and so it appeared to me as the only 
alternative to commercial Unix distributions. Of course, 
| was wrong! However, | believe this is an important point 
against the spread of BSD: a lot of schools and universi- 
ties only present the Linux-alternative, without any men- 
tion of BSDs. 


BSD 


MAGAZINE 


so| 





05/2014 


BSD Certification 





During my PhD at the University, | was in charge of a 
few Sun Ultrasparc II workstations, and that was my very 
first experience with a real Unix OS (Solaris). | was not re- 
ally impressed by this experience, since keeping Solaris 
up- to-date and well configured was quite complex for me, 
but | was strongly influenced by the Linux way. 

Once finished at the University | had the luck of finding 
a job as a Linux system administrator, and therefore | was 
able to improve my skills day by day on a real use case. 
lt was during this job that | started feeling uncomfortable 
with Linux systems: having to deal with a lot of servers 
with different distributions, patch levels, and packet man- 
agers was quite a mess. | am not saying that it is not worth 
using it, and in fact | still run a set of Linux systems, but 
| was simply searching for something more accurate and 
coherent to ease the management of multiple servers. 
| then started learning *BSD, and progressively switched 
to OpenBSD and FreeBSD (depending on the specific use 
case). Having to work also with non-sysadmins | found it 
very important to have built-in variants like pfSense and 
FreeNAS that allowed me to work with all the power of a 
real “*BSD and enabled my coworkers to manage the de- 
vice as a black-box. 

During my switch to *BSD | also began working as a 
Database Administrator for small to medium sized rela- 
tional databases. Being an OpenSource addict | start- 
ed studying PostgreSQL, and deploying it in produ- 
ction environments. 


Please tell us about your proudest 
achievements? 

From a computer science point of view they are surely 
my PhD, dated 2003, and the position of Adjunct Profes- 
sor at Nipissing university, held from 2011 to 2014. | am 
proud of my PhD because it taught me a lot about how 
to do, and how not to do, research. After | left the Uni- 
versity | continued doing research and producing some 
papers, and so and this is how | gained the Adjunct Pro- 
fessor position. 

On the OpenSource side, | am really proud of my in- 
volvement in the ITPUG and being voted as president 
in 2013 was an important achievement that demonstrat- 
ed the time and efforts | put into the association were 
worth it. 

Despite the computer science, my greater achieve- 
ments were in archery back when | was teenager. 


Please tell our readers, what the *BSD OSes 
future looks like? 

Well, these days the BSD operating systems are a step 
ahead of every other operating system. Just look at the 
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The BSD Certification Group Inc. 
(BSDCG) is a non-profit organization 
committed to creating and 
maintaining a global certification 
standard for system administration 
on BSD based operating systems. 





® WHAT CERTIFICATIONS ARE AVAILABLE? 


BSDA: Entry-level certification suited for candidates 
with a general Unix background and at least six months of 
experience with BSD systems. 


BSDP: Advanced certification for senior system administrators 
with at least three years of experience on BSD systems. 
Successful BSDP candidates are able to demonstrate 

strong to expert skills in BSD Unix system administration. 


@ WHERE CAN | GET CERTIFIED? 


We're pleased to announce that after 7 months of 
negotiations and the work required to make the exam 
available in a computer based format, that the BSDA 
exam is now available at several hundred testing centers 
around the world. Paper based BSDA exams cost $75 USD. 
Computer based BSDA exams cost $150 USD. The price of 
the BSDP exams are yet to be determined. 


Payments are made through our registration website: 
https://register.bsdcertification.org//register/payment 


@ WHERE CAN I GET MORE INFORMATION? 


More information and links to our mailing lists, LinkedIn 
groups, and Facebook group are available at our website: 
http://www.bsdcertification.org 


Registration for upcoming exam events is available at our 
registration website: 
https://register.bsdcertification.org//register/get-a-bsdcg-id 
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great work done by the OpenBSD team on 64 bit com- 
patibility or security, or consider the integration of ZFS 
and the new virtualization system (Bhyve) into FreeB- 
SD, or the number of platforms on which NetBSD can 
run. And moreover a BSD system is no longer scary: 
we have PCBSD that has done a lot of work in terms 
of ease of use and installation; web based distributions 
like pfSense, FreeNAS and NAS4Free, and the others 
emerging. | believe BSD will be an important part of the 
future, as well as it has played a very fundamental role 
in the past. 


Could you tell more what the best capabilities 
of *BSD are from your point of view. 

Stability and reliability are surely the most attractive fea- 
tures of pretty much every major “BSD out there. Docu- 
mentation is another very important aspect of almost ev- 
ery “BSD: it is very accurate and always available unlike 
other operating systems. Documentation allows every 
sysadmin to learn more and improve herself. Finally, an- 
other very important feature | like in the *BSDs is the co- 
herence of the whole system, that is shipped in “base” as 
a full system and not as a puzzle of several parts to plumb 
together. This means that | can always trust that what is in 
base will work seamlessly. 


What was/is your best tool to work with? 

GNU Emacs. It is surely the application | spend most of 
my daily work time in. Second comes my shell, that these 
days defaults to zsh. And then comes a few different ap- 
plications that are available on my favorite desktop: KDE. 
As a programming language, | simply love Perl, even if | 
cannot say why, as well as C, but in my everyday job | use 
Java and PHP. As a relational database | use PostgreSQL 
every time | can. Finally, | use Linux at work, but | love 
FreeBSD as an operating system and | use it at home and 
everywhere | can. 


What is the best advice for those who want to 
use the *BSD OS and why should they? 

First of all, everyone interested in computing should try a 
“BSD at least one time in her own life. The reasons are 
quite simple and well known: 


¢ they are free systems and do not impose a vendor 
lock-in; 

¢ they will force users to learn what they are doing, 
meaning that users will progressively take control over 
their own computers, instead of being mere users; 
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e they are well documented and there are communities 
to get support from (and besides, people will learn 
how to ask for help in the right way); 

¢ they work. It does not matter if you are running your 
own desktop, an at-home firewall, a small office NAS 
or a super-cluster, “~BSDs just work. 


| strongly encourage people to try and learn *BSDs be- 
cause they represent a great opportunity to learn some- 
thing new or to consolidate their own skills on a set of 
platforms that are widely adopted. These systems are 
OpenSource ones, and therefore everyone using them 
has the chance to learn and improve herself. 

As a general advice | believe that once you want to try 
a new system you have to commit to it entirely: only fac- 
ing day by day problems and solutions will make you learn 
and improve on such system. These systems are profes- 
sional, made by professionals for other professionals. So 
become a professional as well. 


How do you want to improve yourself in the 
next year? 

| do not have specific plans for the next year, but | try 
every year to participate in conferences and meetings to 
keep myself up-to-date and get new ideas and projects 
worth looking at. Besides this, | read a lot of books and 
papers and experiment myself in order to learn even the 
new features | will seldom use. 

Another huge source for learning is the source code of 
many applications and systems, and today it is quite easy 
to follow the development thanks to a lot of distributed re- 
vision control systems (e.g., git). 


What *BSD systems do you use? 

| use FreeBSD the most, considering also that | run 
FreeNAS and pfSense that are based on the former; | al- 
so use PCBSD for family members and friends. When not 
using FreeBSD | use OpenBSD, which | consider one of 
the most important efforts in the OpenSource space. 


Thank you, 
Ewa & BSD Team 
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Titania's award winning Nipper Studio configuration 
auditing tool is helping security consultants and end- 
user organizations worldwide improve their network 
security. Its reports are more detailed than those typically 
produced by scanners, enabling you to maintain a higher 
level of vulnerability analysis in the intervals between 
penetration tests. 


Now used in over 45 countries, Nipper Studio provides a 
thorough, fast & cost effective way to securely audit over 
100 different types of network device. The NSA, FBI, DoD 
& U.S. Treasury already use It, so why not try it for free at 
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In a Surprise Decision, Europe's Top Court 

has Ruled That Google can be Forced to Erase 
Links to Content About Individuals. Is History 
Repeating Itself Once Again? 


demned to repeat it, or so said the philosopher 

George Santayana. In a previous article | had a 
good rant on how the UK Conservative coalition — dur- 
ing an unexpected but not unsurprising period of hypoc- 
risy — requested the removal of all of the parties’ elec- 
tion promises from the Internet while at the same time 
supported the banning of over 100K keywords related to 
child pornography. To reiterate, | find both actions mor- 
ally repulsive, because a) the former should be a perma- 
nent matter of public record and b) the latter is as use- 
ful as a chocolate teapot in defending children from the 
evil of pedophile abuse. For those that are still listening, 
generally, technology is not best served by committees, 
lawyers, judges, politicians or indeed governments as 
they just “don't get it’. That is not to say that there are 
not IT savvy individuals in these sectors — there are — 
but generally their voices are drowned out by the herd 
of the ignorant. 

Fairly soon they will take me away in a wooden box and 
bury me in the ground. Whether that be 5 years, 10 years 
or 25 years from now matters not one whit, but | will go 
to my grave ranting that what is happening to the Inter- 
net and the World Wide Web today is identical to what 
happened during the time in history when books first be- 
came the “new media’. Ergo, the establishment got pretty 
worked up about the peasants finding out “esoteric knowl- 
edge” and the church (in this case the Roman Catholic 
Church) stepped in to be “God’s censor’. The fact that this 
knowledge was the Protestant bible (and there are those 
who argue the protestants didn’t go far enough) is neither 
here nor there — the principle remains that an element of 
the establishment was not happy and did everything in its 
power to censure, burn, character assassinate and torture 
those on the side of an alternative view, revelation and 
freedom of speech. 
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| am not a great defender of corporate culture — particu- 
larly corruption and ethical misdeeds, and it is rare that | 
will be found taking the side of Google — the new Micro- 
soft. But in this case, they have a point. If Google is to be 
taken seriously and if you are to look at today’s younger 
generation, Google is indeed the font of all wisdom — how 
can redacting the past elicit credibility? And herein lies the 
problem — is Internet content a pastiche, a snapshot of 
history or just a temporary communication medium with- 
out value? As the old saying goes, a verbal contract is 
not worth the paper it is written on. After all, Google is the 
world’s biggest log-file. 

Where | come from, a man’s word is his bond, and 
| expect the same from my computer. A trusted and 
proven friend will have more credibility than a stranger, 
likewise there are a number of websites | trust. While 
Google is still fighting the blowback from its original eth- 
ical stance of “do no evil” in the UK due to ethical is- 
sues over tax, it is still the world’s leading search en- 
gine. There are those that can add to this faux pas, and 
no doubt the underbelly of Google will be found to be 
as grubby as any modern corporation. However, that 
should not divert us from this ruling that gives pedo- 
philes, criminals, corporates and other undesirables the 
ability to put a gun to the head of the messenger and le- 
gally demand — like a cat burying its feces in the ground 
— that all trace of embarrassment should be removed. 
Like cat shit, this stinks. 

Of course, like any publisher or voice of authority, there 
needs to be a balance. And that balance needs to be 
firmly placed with those who write and publish on the 
Internet. Never has the need for ethics, oversight and 
just sheer common sense been more required than in 
these days of Facebook, Twitter and the Blog. The Duke 
of Wellington said “Publish and be damned”, but that 
was more akin to the Gaelic shrug of indifference than 
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to the current understanding — that publishers must take 
responsibility for what is printed (albeit in electronic for- 
mat) — is a good ethical principle. 

Forcing Google to remove links is akin to breaking into 
a library and removing the Dewey index card for whatever 
book offends the reader in a library. The content is still 
there, but hey ho, situation ethics wins so my only hope 
is that the Streisand effect will kick in and give those that 
choose to go down this route a run for their money. 

Let’s be clear though, a lie goes halfway round the world 
before the truth has got its boots on. Everyone — Pub- 
lishers, Google and ISP’s have a responsibility to ensure 
that the Internet is a truthful and valid source of informa- 
tion. And here we really start to open a very large can of 
worms — for throughout the ages the powers that be (or 
the aliens, take your pick) have sought to corrupt, debase, 
and change the very fine thread of truth that characterizes 
a particular scenario. Propaganda, spin, advertising, sta- 
tistics — all of these have a huge impact on human con- 
sciousness. And the Internet is rife with them all. Again it 
goes back to the publishers, but maybe we need some 
discipline on the the good old Interweb. Where do we 
draw the line between entertainment, opinion, experience, 
knowledge and truth? 

I'd love to be able to come up with a definitive answer, 
but like the human condition, the answer is a bit more 
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complex. Google, like the Internet, is just a mirror placed 
at the face of humanity. Those that choose to scrape the 
silver coating off the back so that a true reflection will not 
be seen will so crudely distort the image that the cries of 
“foul” will be louder than their misdeeds, and thereby at- 
tract more attention to themselves. That is, of course, if 
Google has the courage to display the link with the words 


“We have been asked to remove this link because ..... 
Otherwise, we will have an interesting scenario whereby 
Google can comply with the Digital Millennium Copyright 
Act by leaving a link while erasing more interesting mate- 
rial without a trace. 

| really hope Google is as enraged about this as they 
are pretending to be. Bowing down to the DMCA was bad 
enough but to crumple on this will take “Do no evil’ to the 
new low of “Do nothing”. 
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Across 

1 Stock exchange abbreviation for Bill Gates’ empire (3) 

3 After midday (2) 

5 Linux desktop here be dragons! (3) 

7 (and 7 down) In programming, either (2) 

9 HTML page request (3) 

11 Abbreviation for menu that appears on monitor, independent of 
operating system (3) 

14 Microsoft document format now supported by Open Office (4) 

16 Unix utility to search files for content (4) 

19 Decimal 202 in hexadecimal (2) 

20 Linux sound module (4) 

21 A physical computer, service or device (8) 

22 VMware and Xen run these types of devices — a science fiction 
reality? (7) 

24 Motherboard manufacturer that has 1024 Kilobytes? (2) 

27 Sound file suffix (3) 

29 Very loud data drive or large book? (6) 

31 Abbreviation for interrupt or integer (3) 

32 Commercial brand of Unix that tried to sue but lost (3) 

33 Color of the FreeBSD daemon (3) 

36 Microsoft outlook mail file suffix (3) 

37 Initialise a random number or encryption command plant ker- 
nel? (4) 

40 Hangup signal (6) 

42 Truncated executable suffix? (2) 

43 Sum two numbers or abbreviation for the medical condition 
where a person cannot pay attention (3) 

46 BSD software comes in this format (3) 

48 Switch used with Is to generate output separated with commas (2) 

50 Trendy hardware and software manufacturer that has eaten 
fruit (5) 

52 Abbreviation for readonly (2) 

53 Single or multiplayer 80’s game that is quite negative (4) 

56 Abbreviation for line printer (3) 

57 Mature programming language used on mainframes and some- 
times PC’s might be cool? (5) 

59 Unix equivalent of DIR (2) 

60 Part of aDOS new line abbreviation for horse drawn vehicle go- 
ing back? (2) 

61 Abbreviation for a network card (3) 

62 Abbreviation for input and output (2) 

63 Core of Linux and *BSD’s You do not want this to 83 down (6) 

68 Copy MSDOS files to/from Unix (5) 

71 Generally the next operation after opening a file or book (4) 

73 Elderly database engine that used 

variable length fields (4) 

75 UFS, JFS, and EXT are all this (10) 

79 American telco closely allied to Unix (3) 

80 You cannot append to a file unless you do this first (4) 

82 Not zero and not empty (4) 

83 (and 36 down) Mature communications protocol 3 green vege- 
tables in a pod? (3) 

85 Abbreviation for MicroSoft (2) 

86 Unix utility to list processes or a printer language (2) 

87 Protocol essential to the Internet (5) 
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90 US government agency that reverses encryption (3) 

91 IBM's PC bus (3) 

93 Hardware that can be swapped when running — CPU gets this? (3) 

94 Programming language named after a mathematician? (6) 

96 Point on a data tree — content provided by 72 down? (4) 

99 Compressed file type extension — not related to clothes? (3) 

100 Abbreviation for department that has sys admins and pro- 
grammers (2) 

102 Next programming condition after if then .... (4) 

104 Unix folder that holds supervisor binaries (4) 

105 Early text editor — not 115 down (2) 

107 Detachable power cable - or heavy metal? (4) 

109 HTML page request - sent in the mail? (4) 

111 Decimal 206 in Hexadecimal (2) 

112 1000 or 1024 depending on the definition (4) 

114 Common Linux version of 35 down (4) 

116 Decimal 255 in Hexadecimal (2) 

117 Unix utility to show disk space used (2) 

119 To relocate a file from one place to another (4) 

121 Extended version of 115 down abrasive powder cleaner? (3) 

122 Rudely terminate a process (4) 

124 Small hand held games console (2) 

125 This executable would run the turbo version of 94 across ona 
Microsoft box — Indian wigwam? (2) 

127 Opposite of XOFF handshake (3) 

128 Very old hard drive architecture would not compete in a mara- 
thon? (3) 

130 German enterprise software — or the interior of a moist plant? (3) 

131 To remove a file, but not always permanently (6) 

134 A female connector is useless without this (4) 

135 Audit of a process written to file (3) 

136 Unix GUI display committee? (4) 

137 A common firewall or router function an annoying insect may- 
be? (3) 

138 Type of memory card (2) 

140 PC bus — not only found in Russian secret service? (3) 

142 Process that had died but not closed down neatly (6) 

143 In Unix, change to another user — not always root (2) 

144 (and 104 down) Unix editor that lives in a river? (3) 

145 PC bus that provides power everywhere? (3) 
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Down 

1 Module for 43 down - or a forum manager? (3) 

2 Multiple bootable hard disks for DOS or Windows O/S (7) 

3 The IBM XT is this, a Silicon Graphics workstation is not (2) 

4 Essential DNS record for email (2) 

6 Method of accessing RAM - to put it bluntly (3) 

7 (and 7 across) In programming, either (2) 

8 Comment out a program line in BASIC (3) 

10 Could be down to faulty software or hardware (5) 

12 Microsoft screen saver file suffix — first three letters of modern 
display device (3) 

13 Unix process that runs in the background (6) 

15 (and 44 down) Microsoft library (3) 
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16 Acronym for “If you put rubbish in you get rubbish” (4) 

17 Tell a script to run under 35 down #!/bin/ often precedes it (2) 

18 Spider casts its trap across the earth but a domain doesn’t al- 
ways need this (3) 

20 DNS record for a web page (2) 

22 Where 135 across is often stored (3) 

23 Abbreviation for amount of traffic sent via 61 across (2) 

25 Hexadecimal 42 4C or decimal 066 076 in ASCII (2) 

26 Operating system common to DEC (3) 

28 Abbreviation for Windows, Unix and CP/M (2) 

30 Decimal 238 in Hexadecimal (2) 

31 Modern version of 128 across - or a programmers workbench? (3) 

34 Unix utility to query DNS (3) 

35 (and 110 down) TCSH, CSH are this but only found near the 
ocean (5) 

36 (and 83 across) Mature communications protocol — 3 green veg- 
etables in a pod? (3) 

38 Microsoft binary executable and a well known programmers 
magazine (3) 

39 Insecure protocol for accessing desktops (3) 

41 Basic measurement of hard disk or tape storage (5) 

43 Well known web server software — Indian foundation? (6) 

44 (and 15 across) Microsoft library (3) 

45 A file or database will create this to prevent overwriting (4) 

47 One thousand bits (7) 

49 Opposite of 129 down (4) 

51 (and 78 down) Encapsulated version of 89 down (3) 

54 Perl or PHP error handling statement a metal former perhaps? (3) 

55 Binary 1, set or enabled (2) 

58 Make copy of files to prevent disaster (6) 

64 In Linux, variables that affect the behaviour of boot scripts (3) 

65 Unix software to convert audio files (4) 

66 Hardware or software process continually checking - always 
happens during political elections (5) 

67 Hardware manufacturer that started in a garage (2) 

68 Unix file manager — an advanced version of 110 down (2) 

69 Printer language or Unix command to list processes (2) 

70 Bright diode found in most hardware (3) 

71 Abbreviation that says you cannot write (2) 

72 Popular open source Content Management System (6) 

74 Abbreviation for Twitter or a chat server conversation — quick 
chat? (2) 

75 Insecure transfer protocol (3) 

76 SUSE Linux management software (4) 

77 More colourful version of 69 down? (3) 

78 (and 51 down) Encapsulated version of 89 down (3) 

81 Server that distributes time on a network (3) 

82 Unix utility to raise or lower a process priority (4) 

83 You may do this if 63 across fails to load or run correctly (5) 

84 The number of a process — a project manager's first document? (3) 

85 File perusal filter for crt viewing (4) 

88 To change a number type in C — a support for a broken limb? (4) 

89 Printer and graphics language (2) 

92 A drive head will do this (4) 

93 Linux abstraction layer for 21 across (3) 
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Down 

95 Unix command equivalent to DOS DIR (2) 

97 Binary 1 in single word (3) 

98 Two of these keys will be found on your keyboard - related to 
131 across (3) 

100 SCSI device number (2) 

101 Microsoft's text only O/S (3) 

103 A common Linux binary format mythical small creature? (3) 

104 (and 144 across) Unix editor that lives in a river? (3) 

106 Object orientated model for web developers — or a short XEN 
domain ? (3) 

108 Decimal 174 in Hexadecimal (2) 

109 Unix authentication module or arbitrary map file format — her 
name has been shortened? (3) 

110 (and 35 down) TCSH, CSH are this but only found near the 
ocean (5) 

113 Abbreviation for interrupt (3) 

114 Unix binaries are found in this folder (3) 

115 Alternative editor to Emacs (2) 

116 Compiler switch — country identifier by fabric? (5) 

118 Abbreviation for an American time in the summer (3) 

120 Shorthand for 22 across if it is a server or desktop (2) 

121 Current times resistance — the answer is shocking (5) 

123 In linux, list open files (4) 

124 Decimal 222 in Hexadecimal (2) 

126 Remote or local access point on a server — every sailor visits 
one (4) 

128 Memory, accessed in a nonlinear fashion (3) 

129 Opposite of 85 down (4) 

131 Firewall area — In a war this is the place to be (3) 

132 Microsoft suffix for an executable (3) 

133 This is not Unix (3) 

139 Abbreviation of Dr Codd’s system (2) 

141 HTML new line tag (2) 
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